CVE-2023-33778

Published: Jun 1, 2023Modified: Jan 9, 2025

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Draytek Vigor Routers firmware versions below 3.9.6/4.2.4, Access Points firmware versions below v1.4.0, Switches firmware versions below 2.6.7, and Myvigor firmware versions below 2.3.2 were discovered to use hardcoded encryption keys which allows attackers to bind any affected device to their own account. Attackers are then able to create WCF and DrayDDNS licenses and synchronize them from the website.

Affected (120)

Draytek

72 products

Myvigor

Vigorswitch Pq2200xb Firmware

Vigorswitch Pq2121x Firmware

Vigorswitch P2540xs Firmware

Vigorswitch P2280x Firmware

Vigorswitch P2100 Firmware

Vigorswitch Q2200x Firmware

Vigorswitch Q2121x Firmware

Vigorswitch G2540xs Firmware

Vigorswitch G2280x Firmware

Vigorswitch G2121 Firmware

Vigorswitch G2100 Firmware

Vigorswitch Fx2120 Firmware

Vigorswitch P1282 Firmware

Vigorswitch G1282 Firmware

Vigorswitch G1085 Firmware

Vigorswitch G1080 Firmware

Vigorap 903 Firmware

Vigorap 912c Firmware

Vigorap 918r Firmware

Vigorap 1060c Firmware

Vigorap 906 Firmware

Vigorap 960c Firmware

Vigorap 1000c Firmware

Vigor2766ac Firmware

Vigor2766ax Firmware

Vigor2766vac Firmware

Vigor2765ax Firmware

Vigor2765vac Firmware

Vigorlte 200n Firmware

Vigor2915ac Firmware

Vigor2135ac Firmware

Vigor2135ax Firmware

Vigor2135fvac Firmware

Vigor2135vac Firmware

Vigor2866ax Firmware

Vigor2866ac Firmware

Vigor2866vac Firmware

Vigor2866l Firmware

Vigor2866lac Firmware

Vigor2865ac Firmware

Vigor2865ax Firmware

Vigor2865vac Firmware

Vigor2865l Firmware

Vigor2865lac Firmware

Vigor2862n Firmware

Vigor2862ac Firmware

Vigor2862vac Firmware

Vigor2862b Firmware

Vigor2862bn Firmware

Vigor2862l Firmware

Vigor2862lac Firmware

Vigor2927vac Firmware

Vigor2927f Firmware

Vigor2927l Firmware

Vigor2927lac Firmware

Vigor2926 Plus Firmware

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Draytek Myvigor	Before 2.3.2

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch Pq2200xb Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch Pq2200xb	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch Pq2121x Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch Pq2121x	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch P2540xs Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch P2540xs	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch P2280x Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch P2280x	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch P2100 Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch P2100	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch Q2200x Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch Q2200x	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch Q2121x Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch Q2121x	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch G2540xs Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch G2540xs	All versions

Configuration J

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch G2280x Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch G2280x	All versions

Configuration K

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch G2121 Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch G2121	All versions

Configuration L

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch G2100 Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch G2100	All versions

Configuration M

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch Fx2120 Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch Fx2120	All versions

Configuration N

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch P1282 Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch P1282	All versions

Configuration O

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch G1282 Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch G1282	All versions

Configuration P

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch G1085 Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch G1085	All versions

Configuration Q

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorswitch G1080 Firmware	Before 2.6.7

Running on/with	Platform Versions
Draytek Vigorswitch G1080	All versions

Configuration R

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorap 903 Firmware	Before 1.4.0

Running on/with	Platform Versions
Draytek Vigorap 903	All versions

Configuration S

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorap 912c Firmware	Before 1.4.0

Running on/with	Platform Versions
Draytek Vigorap 912c	All versions

Configuration T

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorap 918r Firmware	Before 1.4.0

Running on/with	Platform Versions
Draytek Vigorap 918r	All versions

Configuration U

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorap 1060c Firmware	Before 1.4.0

Running on/with	Platform Versions
Draytek Vigorap 1060c	All versions

Configuration V

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorap 906 Firmware	Before 1.4.0

Running on/with	Platform Versions
Draytek Vigorap 906	All versions

Configuration W

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorap 960c Firmware	Before 1.4.0

Running on/with	Platform Versions
Draytek Vigorap 960c	All versions

Configuration X

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorap 1000c Firmware	Before 1.4.0

Running on/with	Platform Versions
Draytek Vigorap 1000c	All versions

Configuration Y

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2766ac Firmware	Before 3.9.6
Draytek Vigor2766ac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2766ac	All versions

Configuration Z

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2766ax Firmware	Before 3.9.6
Draytek Vigor2766ax Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2766ax	All versions

Configuration A

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2766vac Firmware	Before 3.9.6
Draytek Vigor2766vac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2766vac	All versions

Configuration B

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2765ax Firmware	Before 3.9.6
Draytek Vigor2765ax Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2765ax	All versions

Configuration C

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2765vac Firmware	Before 3.9.6
Draytek Vigor2765vac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2765vac	All versions

Configuration D

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2765ac Firmware	Before 3.9.6
Draytek Vigor2765ac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2765ac	All versions

Configuration E

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2763ac Firmware	Before 3.9.6
Draytek Vigor2763ac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2763ac	All versions

Configuration F

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2620l Firmware	Before 3.9.6
Draytek Vigor2620l Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2620l	All versions

Configuration G

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2620ln Firmware	Before 3.9.6
Draytek Vigor2620ln Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2620ln	All versions

Configuration H

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigorlte 200n Firmware	Before 3.9.6
Draytek Vigorlte 200n Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigorlte 200n	All versions

Configuration I

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2915ac Firmware	Before 3.9.6
Draytek Vigor2915ac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2915ac	All versions

Configuration J

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2135ac Firmware	Before 3.9.6
Draytek Vigor2135ac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2135ac	All versions

Configuration K

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2135ax Firmware	Before 3.9.6
Draytek Vigor2135ax Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2135ax	All versions

Configuration L

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2135fvac Firmware	Before 3.9.6
Draytek Vigor2135fvac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2135fvac	All versions

Configuration M

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2135vac Firmware	Before 3.9.6
Draytek Vigor2135vac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2135vac	All versions

Configuration N

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2866ax Firmware	Before 3.9.6
Draytek Vigor2866ax Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2866ax	All versions

Configuration O

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2866ac Firmware	Before 3.9.6
Draytek Vigor2866ac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2866ac	All versions

Configuration P

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2866vac Firmware	Before 3.9.6
Draytek Vigor2866vac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2866vac	All versions

Configuration Q

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2866l Firmware	Before 3.9.6
Draytek Vigor2866l Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2866l	All versions

Configuration R

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2866lac Firmware	Before 3.9.6
Draytek Vigor2866lac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2866lac	All versions

Configuration S

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2865ac Firmware	Before 3.9.6
Draytek Vigor2865ac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2865ac	All versions

Configuration T

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2865ax Firmware	Before 3.9.6
Draytek Vigor2865ax Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2865ax	All versions

Configuration U

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2865vac Firmware	Before 3.9.6
Draytek Vigor2865vac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2865vac	All versions

Configuration V

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2865l Firmware	Before 3.9.6
Draytek Vigor2865l Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2865l	All versions

Configuration W

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2865lac Firmware	Before 3.9.6
Draytek Vigor2865lac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2865lac	All versions

Configuration X

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862n Firmware	Before 3.9.6
Draytek Vigor2862n Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2862n	All versions

Configuration Y

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862ac Firmware	Before 3.9.6
Draytek Vigor2862ac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2862ac	All versions

Configuration Z

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862vac Firmware	Before 3.9.6
Draytek Vigor2862vac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2862vac	All versions

Configuration A

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862b Firmware	Before 3.9.6
Draytek Vigor2862b Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2862b	All versions

Configuration B

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862bn Firmware	Before 3.9.6
Draytek Vigor2862bn Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2862bn	All versions

Configuration C

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862l Firmware	Before 3.9.6
Draytek Vigor2862l Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2862l	All versions

Configuration D

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862lac Firmware	Before 3.9.6
Draytek Vigor2862lac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2862lac	All versions

Configuration E

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2862ln Firmware	Before 3.9.6
Draytek Vigor2862ln Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2862ln	All versions

Configuration F

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2832n Firmware	Before 3.9.6
Draytek Vigor2832n Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2832n	All versions

Configuration G

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2927ax Firmware	Before 3.9.6
Draytek Vigor2927ax Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2927ax	All versions

Configuration H

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2927ac Firmware	Before 3.9.6
Draytek Vigor2927ac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2927ac	All versions

Configuration I

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2927vac Firmware	Before 3.9.6
Draytek Vigor2927vac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2927vac	All versions

Configuration J

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2927f Firmware	Before 3.9.6
Draytek Vigor2927f Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2927f	All versions

Configuration K

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2927l Firmware	Before 3.9.6
Draytek Vigor2927l Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2927l	All versions

Configuration L

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2927lac Firmware	Before 3.9.6
Draytek Vigor2927lac Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2927lac	All versions

Configuration M

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2926 Plus Firmware	Before 3.9.6
Draytek Vigor2926 Plus Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2926 Plus	All versions

Configuration N

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2962 Firmware	Before 3.9.6
Draytek Vigor2962 Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor2962	All versions

Configuration O

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor1000b Firmware	Before 3.9.6
Draytek Vigor1000b Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor1000b	All versions

Configuration P

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor3910 Firmware	Before 3.9.6
Draytek Vigor3910 Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor3910	All versions

Configuration Q

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor165 Firmware	Before 3.9.6
Draytek Vigor165 Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor165	All versions

Configuration R

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor166 Firmware	Before 3.9.6
Draytek Vigor166 Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor166	All versions

Configuration S

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor130 Firmware	Before 3.9.6
Draytek Vigor130 Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor130	All versions

Configuration T

2 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor167 Firmware	Before 3.9.6
Draytek Vigor167 Firmware	From 4.0.0 to 4.2.4

Running on/with	Platform Versions
Draytek Vigor167	All versions

Related CWEs

CWE-798

Use of Hard-coded Credentials

The product contains hard-coded credentials, such as a password or cryptographic key.

References (2)

https://gist.github.com/Ji4n1ng/6d028709d39458f5ab95b3ea211225ef

Source: cve@mitre.org

ExploitThird Party Advisory

https://gist.github.com/Ji4n1ng/6d028709d39458f5ab95b3ea211225ef

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.