CVE-2022-32548
Last modified
CVE-2022-32548 is a critical-severity vulnerability rated 9.8/10 on the CVSS scale. An issue was discovered on certain DrayTek Vigor routers before July 2022 such as the Vigor3910 before 4.3.1.1. /cgi-bin/wlogin.cgi has a buffer overflow via the username or password to the aa or ab field.. EPSS estimates a 33.79% chance of exploitation in the next 30 days.
Description
An issue was discovered on certain DrayTek Vigor routers before July 2022 such as the Vigor3910 before 4.3.1.1. /cgi-bin/wlogin.cgi has a buffer overflow via the username or password to the aa or ab field.
Metrics
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Draytek | Vigor3910 Firmware | < 4.3.1.1 |
| Draytek | Vigor1000b Firmware | < 4.3.1.1 |
| Draytek | Vigor2962 Firmware | < 4.3.1.1 |
| Draytek | Vigor2962p Firmware | < 4.3.1.1 |
| Draytek | Vigor2927 Firmware | < 4.4.0 |
| Draytek | Vigor2927ax Firmware | < 4.4.0 |
| Draytek | Vigor2927ac Firmware | < 4.4.0 |
| Draytek | Vigor2927vac Firmware | < 4.4.0 |
| Draytek | Vigor2927l Firmware | < 4.4.0 |
| Draytek | Vigor2927lac Firmware | < 4.4.0 |
| Draytek | Vigor2915 Firmware | < 4.3.3.2 |
| Draytek | Vigor2915ac Firmware | < 4.3.3.2 |
| Draytek | Vigor2952 Firmware | < 3.9.7.2 |
| Draytek | Vigor2952p Firmware | < 3.9.7.2 |
| Draytek | Vigor3220 Firmware | < 3.9.7.2 |
| Draytek | Vigor2926 Firmware | < 3.9.8.1 |
| Draytek | Vigor2926n Firmware | < 3.9.8.1 |
| Draytek | Vigor2926ac Firmware | < 3.9.8.1 |
| Draytek | Vigor2926vac Firmware | < 3.9.8.1 |
| Draytek | Vigor2926l Firmware | < 3.9.8.1 |
| Draytek | Vigor2926ln Firmware | < 3.9.8.1 |
| Draytek | Vigor2926lac Firmware | < 3.9.8.1 |
| Draytek | Vigor2862 Firmware | < 3.9.8.1 |
| Draytek | Vigor2862n Firmware | < 3.9.8.1 |
| Draytek | Vigor2862ac Firmware | < 3.9.8.1 |
| Draytek | Vigor2862vac Firmware | < 3.9.8.1 |
| Draytek | Vigor2862b Firmware | < 3.9.8.1 |
| Draytek | Vigor2862bn Firmware | < 3.9.8.1 |
| Draytek | Vigor2862l Firmware | < 3.9.8.1 |
| Draytek | Vigor2862ln Firmware | < 3.9.8.1 |
| Draytek | Vigor2862lac Firmware | < 3.9.8.1 |
| Draytek | Vigor2620l Firmware | < 3.9.8.1 |
| Draytek | Vigor2620ln Firmware | < 3.9.8.1 |
| Draytek | Vigorlte 200n Firmware | < 3.9.8.1 |
| Draytek | Vigor2133 Firmware | < 3.9.6.4 |
| Draytek | Vigor2133n Firmware | < 3.9.6.4 |
| Draytek | Vigor2133ac Firmware | < 3.9.6.4 |
| Draytek | Vigor2133vac Firmware | < 3.9.6.4 |
| Draytek | Vigor2133fvac Firmware | < 3.9.6.4 |
| Draytek | Vigor2762 Firmware | < 3.9.6.4 |
| Draytek | Vigor2762n Firmware | < 3.9.6.4 |
| Draytek | Vigor2762ac Firmware | < 3.9.6.4 |
| Draytek | Vigor2762vac Firmware | < 3.9.6.4 |
| Draytek | Vigor165 Firmware | < 4.2.4 |
| Draytek | Vigor166 Firmware | < 4.2.4 |
| Draytek | Vigor2135 Firmware | < 4.4.2 |
| Draytek | Vigor2135ac Firmware | < 4.4.2 |
| Draytek | Vigor2135vac Firmware | < 4.4.2 |
| Draytek | Vigor2135fvac Firmware | < 4.4.2 |
| Draytek | Vigor2765 Firmware | < 4.4.2 |
Showing 50 of 68 affected configurations. See NVD for the full list.
References
- https://www.securityweek.com/smbs-exposed-attacks-critical-vulnerability-draytek-vigor-routersExploit, Third Party Advisory
- https://www.trellix.com/en-us/about/newsroom/stories/threat-labs/rce-in-dratyek-routers.htmlExploit, Third Party Advisory
- https://www.securityweek.com/smbs-exposed-attacks-critical-vulnerability-draytek-vigor-routersExploit, Third Party Advisory
- https://www.trellix.com/en-us/about/newsroom/stories/threat-labs/rce-in-dratyek-routers.htmlExploit, Third Party Advisory
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2022-32548?
How severe is CVE-2022-32548?
How do I fix CVE-2022-32548?
Are you affected by CVE-2022-32548?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST