CVE-2023-6265

MEDIUM

Draytek Vigor2960 <1.5.1.4-1.5.1.5 - Path Traversal

Title source: llm

Description

** UNSUPPORTED WHEN ASSIGNED ** Draytek Vigor2960 v1.5.1.4 and v1.5.1.5 are vulnerable to directory traversal via the mainfunction.cgi dumpSyslog 'option' parameter allowing an authenticated attacker with access to the web management interface to delete arbitrary files. Vigor2960 is no longer supported.

References (3)

Core 3

Core References

Exploit exploit

https://github.com/xxy1126/Vuln/blob/main/Draytek/4.md

View Exploit ZIP pw:eip

Product product

https://www.draytek.com/products/vigor2960/

Product product

https://www.draytek.com/about/newsroom/2021/2021/end-of-life-notification-vigor2960

Scores

CVSS v3 6.5

EPSS 0.0032

EPSS Percentile 55.1%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Details

CWE

CWE-22

Status published

Products (2)

draytek/vigor2960_firmware 1.5.1.4

draytek/vigor2960_firmware 1.5.1.5

Published Nov 22, 2023

Tracked Since Feb 18, 2026