CVE-2024-41339

{"id": "CVE-2024-41339", "cveTags": [], "metrics": {"cvssMetricV31": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "cvssData": {"scope": "UNCHANGED", "version": "3.1", "baseScore": 8.8, "attackVector": "NETWORK", "baseSeverity": "HIGH", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H", "integrityImpact": "HIGH", "userInteraction": "NONE", "attackComplexity": "LOW", "availabilityImpact": "HIGH", "privilegesRequired": "LOW", "confidentialityImpact": "HIGH"}, "impactScore": 5.9, "exploitabilityScore": 2.8}]}, "published": "2025-02-27T21:15:36.837", "references": [{"url": "http://draytek.com", "tags": ["Product"], "source": "[email protected]"}, {"url": "https://medium.com/faraday/advisory-multiple-vulnerabilities-affecting-draytek-routers-78a6cb8b3946", "tags": ["Third Party Advisory"], "source": "[email protected]"}], "vulnStatus": "Analyzed", "weaknesses": [{"type": "Secondary", "source": "134c704f-9b21-4f2e-91b3-4a467353bcc0", "description": [{"lang": "en", "value": "CWE-434"}]}], "descriptions": [{"lang": "en", "value": "An issue in the CGI endpoint used to upload configurations in Draytek devices Vigor 165/166 prior to v4.2.6 , Vigor 2620/LTE200 prior to v3.9.8.8, Vigor 2860/2925 prior to v3.9.7, Vigor 2862/2926 prior to v3.9.9.4, Vigor 2133/2762/2832 prior to v3.9.8, Vigor 2135/2765/2766 prior to v4.4.5.1, Vigor 2865/2866/2927 prior to v4.4.5.3, Vigor 2962/3910 prior to v4.3.2.7, Vigor 3912 prior to v4.3.5.2, and Vigor 2925 up to v3.9.6 allows attackers to upload a crafted kernel module, allowing for arbitrary code execution."}, {"lang": "es", "value": "Un problema en el endpoint CGI utilizado para cargar configuraciones en dispositivos Draytek Vigor 165/166 anterior a v4.2.6, Vigor 2620/LTE200 anterior a v3.9.8.8, Vigor 2860/2925 anterior a v3.9.7, Vigor 2862/2926 anterior a v3.9.9.4, Vigor 2133/2762/2832 anterior a v3.9.8, Vigor 2135/2765/2766 anterior a v4.4.5.1, Vigor 2865/2866/2927 anterior a v4.4.5.3, Vigor 2962/3910 anterior a v4.3.2.7, Vigor 3912 anterior a v4.3.5.2 y Vigor 2925 hasta v3.9.6 permite a los atacantes cargar un m\u00f3dulo de kernel manipulado espec\u00edficamente, lo que permite la ejecuci\u00f3n de c\u00f3digo arbitrario."}], "lastModified": "2025-06-03T13:52:39.957", "configurations": [{"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor165_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "59521C99-00BA-4503-823E-3FEA44F8DDA0", "versionEndExcluding": "4.2.7"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor165:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8E644893-0457-43A9-98AB-9DB37A5C415C"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor166_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "08B9436B-B2FE-4644-BB06-B0537EC23A71", "versionEndExcluding": "4.2.7"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor166:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7E33E647-5883-44FA-9915-34B89090D4E4"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor2620_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "4C7DD492-4294-484D-A4D2-BCCCA152D57F", "versionEndExcluding": "3.9.8.9"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor2620:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "5D98663B-F2F5-4ADC-9FD5-75846890EEBA"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigorlte200_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E7845410-6E90-4E92-8029-964A7F77EC57", "versionEndExcluding": "3.9.8.9"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigorlte200:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "4DBF2015-9315-44C8-A9FE-E86146F1958E"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor2860_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "02588C38-E98C-4553-93C0-535A0C129783", "versionEndExcluding": "3.9.8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor2860:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "266C73DE-BFC6-4F3E-B022-559B3971CA44"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor2925_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "43C713BB-02A0-4CD4-A27F-943D5D538444", "versionEndExcluding": "3.9.8"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor2925:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "7536B29C-2030-4331-B8BF-D269D86D199B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor2862_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "765C62A0-BE3E-4661-8FD6-E9566B7C3C28", "versionEndExcluding": "3.9.9.5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor2862:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "8B01EDAE-BB9E-4431-BE8C-6505BA7CA42D"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor2926_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "36FE9F0A-223F-42DC-BCB6-4A7A24A65130", "versionEndExcluding": "3.9.9.5"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor2926:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AF1B117B-603D-493C-A804-C18ED332A221"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor2133_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E0813DB7-4B52-40E1-9D5C-DBF9FA74EFD0", "versionEndExcluding": "3.9.9"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor2133:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "1878E59C-FB40-435D-940A-8952C56FA88B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor2762_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "3B69D1EC-7C33-4367-80BA-4008E8C9A4BE", "versionEndExcluding": "3.9.9"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor2762:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "3873B2B9-95C1-4F00-9165-7C4D2A90CDE5"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor2832_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D46E5FF5-6521-4A10-8CC5-34518A38ECFA", "versionEndExcluding": "3.9.9"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor2832:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "B0978465-D59F-4C0A-A29F-5D7BE58BA557"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor2135_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "6FD4B17C-2E8A-45C9-8475-C5FD40C86052", "versionEndExcluding": "4.4.5.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor2135:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "AEDC8A7F-08CF-44D2-A9A5-A1353AF35B45"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor2765_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "815465FB-9BDB-4A16-9E8A-A73B928A7999", "versionEndExcluding": "4.4.5.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor2765:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "60657812-D3A8-4B1B-B7BE-F629991CB053"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor2766_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "73E966A8-E862-4118-B178-93C297765B0B", "versionEndExcluding": "4.4.5.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor2766:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "C0AB3C84-67CA-4531-85FB-1A56F3C93ABF"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor2865_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "31F174D4-CDE6-401D-9040-34B862BDE1F9", "versionEndExcluding": "4.4.5.3"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor2865:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "871448C6-9183-4828-A287-05F5EC6A44F6"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor2866_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "D9B2CD77-C72F-4C26-B082-EA2671A59116", "versionEndExcluding": "4.4.5.3"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor2866:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "0D0D2760-739F-4C79-AEDC-8B2CCCA2FF53"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor2927_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "570A3205-4E89-47E5-9FAE-2D4FFBD5A667", "versionEndExcluding": "4.4.5.3"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor2927:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "12460F51-25AB-4EA9-BC43-9CE8DA992D75"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor2962_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "0549C870-BE10-441A-B07D-0701915E5A9E", "versionEndExcluding": "4.3.2.8"}, {"criteria": "cpe:2.3:o:draytek:vigor2962_firmware:4.4.3.0:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "69EE76E5-A910-46D0-AF34-28D28B77E024"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor2962:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "BD0C9A21-7CFE-452F-8505-834AB8579D9B"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor3910_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "B937F11C-FC86-4D6E-A46B-BA2CA0FFCEF7", "versionEndExcluding": "4.3.2.8"}, {"criteria": "cpe:2.3:o:draytek:vigor3910_firmware:4.4.3:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "E857D42C-1967-46FE-94F6-45B3008ED4DB"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor3910:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "894E4DDA-D9BE-441D-B447-B1CE52959347"}], "operator": "OR"}], "operator": "AND"}, {"nodes": [{"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:o:draytek:vigor3912_firmware:*:*:*:*:*:*:*:*", "vulnerable": true, "matchCriteriaId": "84670562-F228-40A0-A38D-144EA62556D3", "versionEndExcluding": "4.3.6.1"}], "operator": "OR"}, {"negate": false, "cpeMatch": [{"criteria": "cpe:2.3:h:draytek:vigor3912:-:*:*:*:*:*:*:*", "vulnerable": false, "matchCriteriaId": "282E5318-DAA8-4AA2-8E7D-4B8BD9162153"}], "operator": "OR"}], "operator": "AND"}], "sourceIdentifier": "[email protected]"}