CVE-2023-1162
Summary
| CVE | CVE-2023-1162 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2023-03-03 07:15:00 UTC |
| Updated | 2023-11-22 21:15:00 UTC |
| Description | A vulnerability, which was classified as critical, was found in DrayTek Vigor 2960 1.5.1.4. Affected is the function sub_1225C of the file mainfunction.cgi. The manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-222258 is the identifier assigned to this vulnerability. |
Risk And Classification
Problem Types: CWE-77
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Draytek | Vigor 2960 | - | All | All | All |
| Operating System | Draytek | Vigor 2960 Firmware | 1.5.1.4 | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| Vuln/2.md at main · xxy1126/Vuln · GitHub | MISC | github.com | |
| Login required | MISC | vuldb.com | |
| Login required | MISC | vuldb.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.