CVE-2024-45887

Name of the Vulnerable Software and Affected Versions DrayTek Vigor3900 version 1.5.1.3 DrayTek Vigor 2960 (affected versions not specified) DrayTek Vigor 300B (affected versions not specified)

Description The issue is related to a command injection vulnerability in the doOpenVPN() function of the mainfunction.cgi script in the DrayTek Vigor router firmware. This vulnerability occurs when the action parameter in the cgi-bin/mainfunction.cgi endpoint is set to doOpenVPN. The vulnerability is caused by the lack of neutralization of the < and & characters used in the operating system command when processing the action parameter. Exploitation of this vulnerability may allow a remote attacker to execute arbitrary commands.

Recommendations For DrayTek Vigor3900 version 1.5.1.3: Update to a newer version that contains a fix for this issue. For DrayTek Vigor 2960 and DrayTek Vigor 300B: At the moment, there is no information about a newer version that contains a fix for this vulnerability.