On Draytek Vigor3900, Vigor2960, and Vigor 300B devices before 1.5.1.1, there are some command-injection vulnerabilities in the mainfunction.cgi file.
References
Link | Resource |
---|---|
https://gist.github.com/Cossack9989/fa9718434ceee4e6d4f6b0ad672c10f1 | Exploit Third Party Advisory |
https://gist.github.com/WinMin/46165779215f1d47ec257210428c0240 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2020-06-24T16:51:23
Updated: 2020-07-08T19:30:05
Reserved: 2020-06-19T00:00:00
Link: CVE-2020-14472
JSON object: View
NVD Information
Status : Analyzed
Published: 2020-06-24T17:15:11.790
Modified: 2021-12-21T01:29:02.553
Link: CVE-2020-14472
JSON object: View
Redhat Information
No data.
CWE