CVE-2020-15415

Name of the Vulnerable Software and Affected Versions DrayTek Vigor3900, Vigor2960, and Vigor300B devices versions prior to 1.5.1

Description The issue exists due to the lack of measures to neutralize special elements used in the operating system command. This allows a remote attacker to execute arbitrary code by exploiting the cgi-bin/mainfunction.cgi/cvmcfgupload component in the DrayTek Vigor router's firmware. The vulnerability can be exploited via shell metacharacters in a filename when the text/x-python-script content type is used. The estimated number of potentially affected devices is not specified. However, it is mentioned that the vulnerability is being actively exploited.

Recommendations For DrayTek Vigor3900, Vigor2960, and Vigor300B devices versions prior to 1.5.1, update the firmware to version 1.5.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the cgi-bin/mainfunction.cgi/cvmcfgupload component to minimize the risk of exploitation. Avoid using the text/x-python-script content type in the affected API endpoint until the issue is resolved.