CVE-2022-50994

Name of the Vulnerable Software and Affected Versions DrayTek Vigor 2960 versions prior to 1.5.1.4

Description An OS command injection issue exists in the CGI login handler. Unauthenticated remote attackers can execute arbitrary commands with web server privileges by injecting shell metacharacters into the formpassword parameter. This occurs because unsanitized input is passed to the otp check.sh script. Successful exploitation requires a valid username and for the target account to have MOTP (Mobile One-Time Password) authentication enabled.

Recommendations Update to version 1.5.1.4 or later.