CVE-2022-50994
- EPSS 1.43%
- Veröffentlicht 08.05.2026 12:35:08
- Zuletzt bearbeitet 08.05.2026 15:48:43
DrayTek Vigor 2960 firmware versions prior to 1.5.1.4 contain an OS command injection vulnerability in the CGI login handler that allows unauthenticated remote attackers to execute arbitrary commands by injecting shell metacharacters into the formpas...
CVE-2024-12987
- EPSS 98.13%
- Veröffentlicht 27.12.2024 16:15:24
- Zuletzt bearbeitet 30.10.2025 19:53:36
A vulnerability, which was classified as critical, was found in DrayTek Vigor2960 and Vigor300B 1.5.1.4. Affected is an unknown function of the file /cgi-bin/mainfunction.cgi/apmcfgupload of the component Web Management Interface. The manipulation of...
CVE-2024-12986
- EPSS 32.77%
- Veröffentlicht 27.12.2024 16:15:23
- Zuletzt bearbeitet 28.05.2025 20:21:24
A vulnerability, which was classified as critical, has been found in DrayTek Vigor2960 and Vigor300B 1.5.1.3/1.5.1.4. This issue affects some unknown processing of the file /cgi-bin/mainfunction.cgi/apmcfgupptim of the component Web Management Interf...