CVE-2022-32548

Published: Aug 29, 2022Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

An issue was discovered on certain DrayTek Vigor routers before July 2022 such as the Vigor3910 before 4.3.1.1. /cgi-bin/wlogin.cgi has a buffer overflow via the username or password to the aa or ab field.

Affected (68)

68 products

Vigor2927vac Firmware

Vigor2927l Firmware

Vigor2927lac Firmware

Vigor2926vac Firmware

Vigor2926l Firmware

Vigor2926ln Firmware

Vigor2926lac Firmware

Vigor2862 Firmware

Vigor2862n Firmware

Vigor2862ac Firmware

Vigor2862vac Firmware

Vigor2862lac Firmware

Vigor2620l Firmware

Vigor2620ln Firmware

Vigorlte 200n Firmware

Vigor2133 Firmware

Vigor2133n Firmware

Vigor2133ac Firmware

Vigor2133vac Firmware

Vigor2133fvac Firmware

Vigor2762 Firmware

Vigor2762n Firmware

Vigor2762ac Firmware

Vigor2762vac Firmware

Vigor2135vac Firmware

Vigor2135fvac Firmware

Vigor2765 Firmware

Vigor2765ac Firmware

Vigor2765vac Firmware

Vigor2766 Firmware

Vigor2766ac Firmware

Vigor2766vac Firmware

Vigor2865vac Firmware

Vigor2865l Firmware

Vigor2865lac Firmware

Vigor2866 Firmware

Vigor2866ax Firmware

Vigor2866ac Firmware

Vigor2866vac Firmware

Vigor2866l Firmware

Vigor2866lac Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor3910 Firmware	Before 4.3.1.1

Running on/with	Platform Versions
Draytek Vigor3910	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor1000b Firmware	Before 4.3.1.1

Running on/with	Platform Versions
Draytek Vigor1000b	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2962 Firmware	Before 4.3.1.1

Running on/with	Platform Versions
Draytek Vigor2962	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2962p Firmware	Before 4.3.1.1

Running on/with	Platform Versions
Draytek Vigor2962p	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2927 Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2927	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2927ax Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2927ax	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2927ac Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2927ac	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2927vac Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2927vac	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2927l Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2927l	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2927lac Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2927lac	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2915 Firmware	Before 4.3.3.2

Running on/with	Platform Versions
Draytek Vigor2915	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2915ac Firmware	Before 4.3.3.2

Running on/with	Platform Versions
Draytek Vigor2915ac	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2952 Firmware	Before 3.9.7.2

Running on/with	Platform Versions
Draytek Vigor2952	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2952p Firmware	Before 3.9.7.2

Running on/with	Platform Versions
Draytek Vigor2952p	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor3220 Firmware	Before 3.9.7.2

Running on/with	Platform Versions
Draytek Vigor3220	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2926 Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2926	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2926n Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2926n	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2926ac Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2926ac	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2926vac Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2926vac	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2926l Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2926l	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2926ln Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2926ln	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2926lac Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2926lac	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862 Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2862	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862n Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2862n	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862ac Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2862ac	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862vac Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2862vac	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862b Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2862b	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862bn Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2862bn	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862l Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2862l	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862ln Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2862ln	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862lac Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2862lac	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2620l Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2620l	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2620ln Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigor2620ln	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorlte 200n Firmware	Before 3.9.8.1

Running on/with	Platform Versions
Draytek Vigorlte 200n	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2133 Firmware	Before 3.9.6.4

Running on/with	Platform Versions
Draytek Vigor2133	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2133n Firmware	Before 3.9.6.4

Running on/with	Platform Versions
Draytek Vigor2133n	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2133ac Firmware	Before 3.9.6.4

Running on/with	Platform Versions
Draytek Vigor2133ac	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2133vac Firmware	Before 3.9.6.4

Running on/with	Platform Versions
Draytek Vigor2133vac	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2133fvac Firmware	Before 3.9.6.4

Running on/with	Platform Versions
Draytek Vigor2133fvac	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2762 Firmware	Before 3.9.6.4

Running on/with	Platform Versions
Draytek Vigor2762	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2762n Firmware	Before 3.9.6.4

Running on/with	Platform Versions
Draytek Vigor2762n	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2762ac Firmware	Before 3.9.6.4

Running on/with	Platform Versions
Draytek Vigor2762ac	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2762vac Firmware	Before 3.9.6.4

Running on/with	Platform Versions
Draytek Vigor2762vac	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor165 Firmware	Before 4.2.4

Running on/with	Platform Versions
Draytek Vigor165	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor166 Firmware	Before 4.2.4

Running on/with	Platform Versions
Draytek Vigor166	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2135 Firmware	Before 4.4.2

Running on/with	Platform Versions
Draytek Vigor2135	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2135ac Firmware	Before 4.4.2

Running on/with	Platform Versions
Draytek Vigor2135ac	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2135vac Firmware	Before 4.4.2

Running on/with	Platform Versions
Draytek Vigor2135vac	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2135fvac Firmware	Before 4.4.2

Running on/with	Platform Versions
Draytek Vigor2135fvac	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2765 Firmware	Before 4.4.2

Running on/with	Platform Versions
Draytek Vigor2765	All versions

Configuration Y

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2765ac Firmware	Before 4.4.2

Running on/with	Platform Versions
Draytek Vigor2765ac	All versions

Configuration Z

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2765vac Firmware	Before 4.4.2

Running on/with	Platform Versions
Draytek Vigor2765vac	All versions

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2766 Firmware	Before 4.4.2

Running on/with	Platform Versions
Draytek Vigor2766	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2766ac Firmware	Before 4.4.2

Running on/with	Platform Versions
Draytek Vigor2766ac	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2766vac Firmware	Before 4.4.2

Running on/with	Platform Versions
Draytek Vigor2766vac	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2832 Firmware	Before 3.9.6

Running on/with	Platform Versions
Draytek Vigor2832	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2865 Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2865	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2865ax Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2865ax	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2865ac Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2865ac	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2865vac Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2865vac	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2865l Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2865l	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2865lac Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2865lac	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2866 Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2866	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2866ax Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2866ax	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2866ac Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2866ac	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2866vac Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2866vac	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2866l Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2866l	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2866lac Firmware	Before 4.4.0

Running on/with	Platform Versions
Draytek Vigor2866lac	All versions

Related CWEs

CWE-120

Buffer Copy without Checking Size of Input ('Classic Buffer Overflow')

The product copies an input buffer to an output buffer without verifying that the size of the input buffer is less than the size of the output buffer, leading to a buffer overflow.

References (4)

https://www.securityweek.com/smbs-exposed-attacks-critical-vulnerability-draytek-vigor-routers

Source: cve@mitre.org

ExploitThird Party Advisory

https://www.trellix.com/en-us/about/newsroom/stories/threat-labs/rce-in-dratyek-routers.html

Source: cve@mitre.org

ExploitThird Party Advisory

https://www.securityweek.com/smbs-exposed-attacks-critical-vulnerability-draytek-vigor-routers

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

https://www.trellix.com/en-us/about/newsroom/stories/threat-labs/rce-in-dratyek-routers.html

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.