Products
DrayTek Vigor3910
- 3.0.0 - 4.3.2.6
Source
cve@mitre.org
Tags
CVE-2024-41585 details
Published : Oct. 3, 2024, 7:15 p.m.
Last Modified : Oct. 3, 2024, 7:15 p.m.
Last Modified : Oct. 3, 2024, 7:15 p.m.
Description
DrayTek Vigor3910 devices through 4.3.2.6 are affected by an OS command injection vulnerability that allows an attacker to leverage the recvCmd binary to escape from the emulated instance and inject arbitrary commands into the host machine.
CVSS Score
| 1 | 2 | 3 | 4 | 5 | 6 | 7 | 8 | 9 | 10 |
|---|
Weakness
| Weakness | Name | Description |
|---|
References
| URL | Source |
|---|---|
| https://www.forescout.com/resources/draybreak-draytek-research/ | cve@mitre.org |
| https://www.forescout.com/resources/draytek14-vulnerabilities | cve@mitre.org |
This website uses the NVD API, but is not approved or certified by it.