CVE-2021-20124

Name of the Vulnerable Software and Affected Versions Draytek VigorConnect version 1.6.0-B3

Description A local file inclusion vulnerability exists in the file download functionality of the WebServlet endpoint. An unauthenticated attacker could leverage this vulnerability to download arbitrary files from the underlying operating system with root privileges. The issue is related to incorrect restriction of the directory path name with limited access.

Recommendations For Draytek VigorConnect version 1.6.0-B3, as a temporary workaround, consider disabling the file download functionality of the WebServlet endpoint until a patch is available. Restrict access to the WebServlet endpoint to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.