CVE-2025-10547
9.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Summary
An uninitialized variable in the HTTP CGI request arguments processing component of Vigor Routers running DrayOS may allow an attacker the ability to perform RCE on the appliance through memory corruption.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| DrayTek Corporation | Vigor1000B | 0 < 4.4.5.1 | affected |
| DrayTek Corporation | Vigor2962 | 0 < 4.4.5.1 | affected |
| DrayTek Corporation | Vigor3910 | 0 < 4.4.3.6 | affected |
| DrayTek Corporation | Vigor3912 | 0 < 4.4.5.1 | affected |
| DrayTek Corporation | Vigor2135 | 0 < 4.5.1 | affected |
| DrayTek Corporation | Vigor2763 | 0 < 4.5.1 | affected |
| DrayTek Corporation | Vigor2765 | 0 < 4.5.1 | affected |
| DrayTek Corporation | Vigor2766 | 0 < 4.5.1 | affected |
| DrayTek Corporation | Vigor2865 | 0 < 4.5.1 | affected |
| DrayTek Corporation | Vigor2865 LTE Series | 0 < 4.5.1 | affected |
| DrayTek Corporation | Vigor2865L-5G Series | 0 < 4.5.1 | affected |
| DrayTek Corporation | Vigor2866 | 1.0 < 4.5.1 | affected |
| DrayTek Corporation | Vigor2866 LTE | 0 < 4.5.1 | affected |
| DrayTek Corporation | Vigor2927 | 0 < 4.5.1 | affected |
| DrayTek Corporation | Vigor 2927 LTE | 0 < 4.5.1 | affected |
| DrayTek Corporation | Vigor2927L-5G | 0 < 4.5.1 | affected |
| DrayTek Corporation | Vigor2915 | 0 < 4.4.6.1 | affected |
| DrayTek Corporation | Vigor2862 | 0 < 3.9.9.12 | affected |
| DrayTek Corporation | Vigor2862 LTE | 0 < 3.9.9.12 | affected |
| DrayTek Corporation | Vigor2926 | 0 < 3.9.9.12 | affected |
Weaknesses
- CWE-456: Missing Initialization of a Variable
ADP Enrichment
CISA ADP Vulnrichment
- SSVC:
- Exploitation: none
- Automatable: no
- Technical Impact: total
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.