CVE-2020-28968
- EPSS 0.21%
- Veröffentlicht 22.10.2021 20:15:11
- Zuletzt bearbeitet 21.11.2024 05:23:23
Draytek VigorAP 1000C contains a stored cross-site scripting (XSS) vulnerability in the RADIUS Setting - RADIUS Server Configuration module. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the use...
CVE-2020-3932
- EPSS 0.39%
- Veröffentlicht 15.04.2020 07:15:13
- Zuletzt bearbeitet 21.11.2024 05:31:59
A vulnerable SNMP in Draytek VigorAP910C cannot be disabled, which may cause information leakage.
CVE-2017-11649
- EPSS 0.13%
- Veröffentlicht 07.03.2018 02:29:00
- Zuletzt bearbeitet 21.11.2024 03:08:13
Cross-site request forgery (CSRF) vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0_RC3 build r6594 allows remote attackers to hijack the authentication of unspecified users for requests that enable SNMP on the remote device via vecto...
CVE-2017-11650
- EPSS 0.22%
- Veröffentlicht 07.03.2018 02:29:00
- Zuletzt bearbeitet 21.11.2024 03:08:13
Cross-site scripting (XSS) vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0_RC3 build r6594 allows remote attackers to inject arbitrary web script or HTML via vectors involving home.asp.