Known Vulnerabilities for Vigor 2925 by Draytek
Listed below are 2 of the newest known vulnerabilities associated with "Vigor 2925" by "Draytek".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
More device details and information can be found at device.report here: Draytek Vigor 2925
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2024-41340 json | An issue in Draytek devices Vigor 165/166 prior to v4.2.6 , Vigor 2620/LTE200 prior to v3.9.8.8, Vigor 2860/2925 prior to v3.... | Not Provided | 2025-02-27 | 2026-07-05 |
| CVE-2024-41339 json | An issue in the CGI endpoint used to upload configurations in Draytek devices Vigor 165/166 prior to v4.2.6 , Vigor 2620/LTE2... | Not Provided | 2025-02-27 | 2026-07-05 |
| CVE-2024-41338 json | A NULL pointer dereference in Draytek devices Vigor 165/166 prior to v4.2.6 , Vigor 2620/LTE200 prior to v3.9.8.8, Vigor 2860... | Not Provided | 2025-02-27 | 2026-07-05 |
| CVE-2024-41336 json | Draytek devices Vigor 165/166 prior to v4.2.6 , Vigor 2620/LTE200 prior to v3.9.8.8, Vigor 2860/2925 prior to v3.9.7, Vigor 2... | Not Provided | 2025-02-27 | 2026-07-05 |
| CVE-2024-41335 json | Draytek devices Vigor 165/166 prior to v4.2.6 , Vigor 2620/LTE200 prior to v3.9.8.8, Vigor 2860/2925 prior to v3.9.7, Vigor 2... | Not Provided | 2025-02-27 | 2026-07-05 |
| CVE-2024-41334 json | Draytek devices Vigor 165/166 prior to v4.2.6 , Vigor 2620/LTE200 prior to v3.9.8.8, Vigor 2860/2925 prior to v3.9.7, Vigor 2... | Not Provided | 2025-02-27 | 2026-07-05 |
| CVE-2019-16534 json | On DrayTek Vigor2925 devices with firmware 3.8.4.3, XSS exists via a crafted WAN name on the General Setup screen. NOTE: this... | 6.1 - MEDIUM | 2019-09-20 | 2020-04-06 |
| CVE-2019-16533 json | On DrayTek Vigor2925 devices with firmware 3.8.4.3, Incorrect Access Control exists in loginset.htm, and can be used to trigg... | 6.1 - MEDIUM | 2019-09-20 | 2020-04-06 |
Known Affected Configurations (CPE V2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Hardware | Draytek | Vigor 2925 | - |