CVE-2024-12987

Name of the Vulnerable Software and Affected Versions DrayTek Vigor2960 and Vigor300B version 1.5.1.4

Description A critical vulnerability exists in the Web Management Interface of DrayTek Vigor2960 and Vigor300B. The issue is related to the manipulation of the session argument in the /cgi-bin/mainfunction.cgi/apmcfgupload endpoint, which leads to os command injection. This allows a remote attacker to execute arbitrary code. It is estimated that around 66,000 devices are potentially affected. The exploit has been disclosed to the public and may be used.

Recommendations For DrayTek Vigor2960 and Vigor300B version 1.5.1.4, upgrade to version 1.5.1.5 to address this issue. As a temporary workaround, consider restricting access to the /cgi-bin/mainfunction.cgi/apmcfgupload endpoint to minimize the risk of exploitation. Avoid using the session argument in the affected API endpoint until the issue is resolved.