CVE-2023-6265

Name of the Vulnerable Software and Affected Versions Draytek Vigor2960 versions 1.5.1.4 through 1.5.1.5

Description The issue allows an authenticated attacker with access to the web management interface to delete arbitrary files via directory traversal. This is achieved through the mainfunction.cgi dumpSyslog 'option' parameter. The Vigor2960 is no longer supported.

Recommendations For versions 1.5.1.4 and 1.5.1.5, as a temporary workaround, consider restricting access to the mainfunction.cgi endpoint until a resolution is available. Avoid using the option parameter in the dumpSyslog function to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.