CVE-2021-20123
HIGH KEV NUCLEIDraytek VigorConnect 1.6.0-B3 - Unauthenticated Path Traversal via DownloadFileServlet Endpoint
Title source: llmExploitation Summary
CVE-2021-20123 is actively exploited and listed in the CISA Known Exploited Vulnerabilities (KEV) catalog, added September 3, 2024. A Nuclei detection template is also available.
Description
A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download functionality of the DownloadFileServlet endpoint. An unauthenticated attacker could leverage this vulnerability to download arbitrary files from the underlying operating system with root privileges.
Nuclei Templates (1)
Draytek VigorConnect 1.6.0-B - Local File Inclusion
HIGHVERIFIEDby 0x_Akoko
Shodan:
http.html:"VigorConnect" || http.html:"vigorconnect"
FOFA:
body="vigorconnect"
References (2)
Core 2
Core References
Exploit, Third Party Advisory x_refsource_misc
https://www.tenable.com/security/research/tra-2021-42
US Government Resource
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2021-20123
Scores
CVSS v3
7.5
EPSS
0.9349
EPSS Percentile
99.8%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
CISA SSVC
Vulnrichment
Exploitation
active
Automatable
yes
Technical Impact
partial
Details
CISA KEV
2024-09-03
VulnCheck KEV
2024-07-30
InTheWild.io
2024-09-03
ENISA EUVD
EUVD-2021-7580
CWE
CWE-22
Status
published
Products (1)
draytek/vigorconnect
1.6.0 beta3
Published
Oct 13, 2021
KEV Added
Sep 03, 2024
Tracked Since
Feb 18, 2026