Notre sélection d'alertes et avis SSI.
Sources : US Cert, Cert EU, Cert FR, Cnil, VulDB.

mercredi 1 juillet 2020

DrayTek Vigor3900/Vigor2960/Vigor300B up to 1.5.0 cvmcfgupload Shell Metacharacter privilege escalation

A vulnerability, which was classified as critical, was found in DrayTek Vigor3900, Vigor2960 and Vigor300B up to 1.5.0 (Router Operating System). This affects an unknown part of the file cgi-bin/mainfunction.cgi/cvmcfgupload. Upgrading to version 1.5.1 eliminates this vulnerability.

Lien vers l'article source

Auteur: VulDB

Catégories: VulDBNombre de vues: 118

x

Événements SSI