virus logo Intrusion Prevention

DrayTek.Vigor2960.mainfunction.option.Information.Disclosure

description-logoDescription

This indicates an attack attempt to exploit an Information Disclosure Vulnerability in Draytek Vigor 2960.
The vulnerability is due to insufficient sanitizing of user-supplied inputs in the application. A remote attacker can exploit this to gain unauthorized access to sensitive information.

affected-products-logoAffected Products

Draytek Vigor 2960 v1.5.1.4

Impact logoImpact

Information Disclosure: Remote attackers can gain sensitive information from vulnerable systems.

recomended-action-logoRecommended Actions

Currently, we are not aware of any vendor-supplied patch for this issue.

Coverage

IPS (Regular DB)
IPS (Extended DB)

Version Updates

Date Version Detail
2024-05-28 27.794 Name:Draytek.
Vigor.
2960.
Information.
Disclosure:DrayTek.
Vigor2960.
mainfunction.
option.
Information.
Disclosure
2023-07-04 24.593 Default_action:pass:drop
2023-06-19 24.582

References

https://github.com/xxy1126/Vuln/blob/main/Draytek/3.md
ID 53113
Created Jun 12, 2023
Updated May 27, 2024
Risk black-background-circle-icon black-background-circle-icon black-background-circle-icon lightgray-background-circle-icon lightgray-background-circle-icon
CVE ID CVE-2023-1163 CVE-2023-6265 CVE-2023-1009
Exploit Prediction Score 0.21%
Default Action drop
Active
Affected OS Other
Affected App Other