Vulnerability Description
A stack-based buffer overflow on DrayTek Vigor2960, Vigor3900, and Vigor300B devices before 1.5.1.1 allows remote attackers to execute arbitrary code via the formuserphonenumber parameter in an authusersms action to mainfunction.cgi.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Draytek | Vigor300B Firmware | < 1.5.1.1 |
| Draytek | Vigor300B | - |
| Draytek | Vigor2960 Firmware | < 1.5.1.1 |
| Draytek | Vigor2960 | - |
| Draytek | Vigor3900 Firmware | < 1.5.1.1 |
| Draytek | Vigor3900 | - |
Related Weaknesses (CWE)
References
- https://github.com/dexterone/Vigor-pocExploitThird Party Advisory
- https://www.draytek.com/about/security-advisoryVendor Advisory
- https://www.draytek.com/about/security-advisory/vigor3900-/-vigor2960-/-vigor300
- https://github.com/dexterone/Vigor-pocExploitThird Party Advisory
- https://www.draytek.com/about/security-advisoryVendor Advisory
- https://www.draytek.com/about/security-advisory/vigor3900-/-vigor2960-/-vigor300
FAQ
What is CVE-2020-14993?
CVE-2020-14993 is a vulnerability with a CVSS score of 9.8 (CRITICAL). A stack-based buffer overflow on DrayTek Vigor2960, Vigor3900, and Vigor300B devices before 1.5.1.1 allows remote attackers to execute arbitrary code via the formuserphonenumber parameter in an authus...
How severe is CVE-2020-14993?
CVE-2020-14993 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2020-14993?
Check the references section above for vendor advisories and patch information. Affected products include: Draytek Vigor300B Firmware, Draytek Vigor300B, Draytek Vigor2960 Firmware, Draytek Vigor2960, Draytek Vigor3900 Firmware.