CVE-2024-48074

Published: Oct 28, 2024Modified: May 17, 2025

8.0

Vector

CVSS:3.1/AV:A/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.1 / Impact: 5.9

Source: 134c704f-9b21-4f2e-91b3-4a467353bcc0 (Secondary)

Description

An authorized RCE vulnerability exists in the DrayTek Vigor2960 router version 1.4.4, where an attacker can place a malicious command into the table parameter of the doPPPoE function in the cgi-bin/mainfunction.cgi route, and finally the command is executed by the system function.

Affected (1)

Products: Draytek: Vigor2960 Firmware

1 product

Vigor2960 Firmware

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Draytek Vigor2960 Firmware	Version 1.4.4

Running on/with	Platform Versions
Draytek Vigor2960	All versions

Related CWEs

Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

References (2)

https://gist.github.com/Giles-one/6425e97dcd1ec97a722a1e20da25fad7

Source: cve@mitre.org

Third Party Advisory

https://github.com/Giles-one/Vigor2960Crack

Source: cve@mitre.org

ExploitThird Party Advisory

Timeline

No history available yet.