critical
10
CWE
120 119
Advisory Published
Updated

CVE-2022-32548: Buffer Overflow

First published: Mon Aug 29 2022(Updated: )

An issue was discovered on certain DrayTek Vigor routers before July 2022 such as the Vigor3910 before 4.3.1.1. /cgi-bin/wlogin.cgi has a buffer overflow via the username or password to the aa or ab field.

Credit: cve@mitre.org

Affected SoftwareAffected VersionHow to fix
Draytek Vigor3910 Firmware<4.3.1.1
DrayTek Vigor3910
Draytek Vigor1000b Firmware<4.3.1.1
Draytek Vigor1000b
Draytek Vigor2962 Firmware<4.3.1.1
Draytek Vigor2962
Draytek Vigor2962p Firmware<4.3.1.1
Draytek Vigor2962p
Draytek Vigor2927 Firmware<4.4.0
Draytek Vigor2927
Draytek Vigor2927ax Firmware<4.4.0
Draytek Vigor2927ax
Draytek Vigor2927ac Firmware<4.4.0
Draytek Vigor2927ac
Draytek Vigor2927vac Firmware<4.4.0
Draytek Vigor2927vac
Draytek Vigor2927l Firmware<4.4.0
Draytek Vigor2927l
Draytek Vigor2927lac Firmware<4.4.0
Draytek Vigor2927lac
Draytek Vigor2915 Firmware<4.3.3.2
Draytek Vigor2915
Draytek Vigor2915ac Firmware<4.3.3.2
Draytek Vigor2915ac
Draytek Vigor2952 Firmware<3.9.7.2
Draytek Vigor2952
Draytek Vigor2952p Firmware<3.9.7.2
Draytek Vigor2952p
Draytek Vigor3220 Firmware<3.9.7.2
Draytek Vigor3220
Draytek Vigor2926 Firmware<3.9.8.1
Draytek Vigor2926
Draytek Vigor2926n Firmware<3.9.8.1
Draytek Vigor2926n
Draytek Vigor2926ac Firmware<3.9.8.1
Draytek Vigor2926ac
Draytek Vigor2926vac Firmware<3.9.8.1
Draytek Vigor2926vac
Draytek Vigor2926l Firmware<3.9.8.1
Draytek Vigor2926l
Draytek Vigor2926ln Firmware<3.9.8.1
Draytek Vigor2926ln
Draytek Vigor2926lac Firmware<3.9.8.1
Draytek Vigor2926lac
Draytek Vigor2862 Firmware<3.9.8.1
Draytek Vigor2862
Draytek Vigor2862n Firmware<3.9.8.1
Draytek Vigor2862n
Draytek Vigor2862ac Firmware<3.9.8.1
Draytek Vigor2862ac
Draytek Vigor2862vac Firmware<3.9.8.1
Draytek Vigor2862vac
Draytek Vigor2862b Firmware<3.9.8.1
Draytek Vigor2862b
Draytek Vigor2862bn Firmware<3.9.8.1
Draytek Vigor2862bn
Draytek Vigor2862l Firmware<3.9.8.1
Draytek Vigor2862l
Draytek Vigor2862ln Firmware<3.9.8.1
Draytek Vigor2862ln
Draytek Vigor2862lac Firmware<3.9.8.1
Draytek Vigor2862lac
Draytek Vigor2620l Firmware<3.9.8.1
Draytek Vigor2620l
Draytek Vigor2620ln Firmware<3.9.8.1
Draytek Vigor2620ln
Draytek Vigorlte 200n Firmware<3.9.8.1
Draytek Vigorlte 200n
Draytek Vigor2133 Firmware<3.9.6.4
Draytek Vigor2133
Draytek Vigor2133n Firmware<3.9.6.4
Draytek Vigor2133n
Draytek Vigor2133ac Firmware<3.9.6.4
Draytek Vigor2133ac
Draytek Vigor2133vac Firmware<3.9.6.4
Draytek Vigor2133vac
Draytek Vigor2133fvac Firmware<3.9.6.4
Draytek Vigor2133fvac
Draytek Vigor2762 Firmware<3.9.6.4
Draytek Vigor2762
Draytek Vigor2762n Firmware<3.9.6.4
Draytek Vigor2762n
Draytek Vigor2762ac Firmware<3.9.6.4
Draytek Vigor2762ac
Draytek Vigor2762vac Firmware<3.9.6.4
Draytek Vigor2762vac
Draytek Vigor165 Firmware<4.2.4
Draytek Vigor165
Draytek Vigor166 Firmware<4.2.4
Draytek Vigor166
Draytek Vigor2135 Firmware<4.4.2
Draytek Vigor2135
Draytek Vigor2135ac Firmware<4.4.2
Draytek Vigor2135ac
Draytek Vigor2135vac Firmware<4.4.2
Draytek Vigor2135vac
Draytek Vigor2135fvac Firmware<4.4.2
Draytek Vigor2135fvac
Draytek Vigor2765 Firmware<4.4.2
Draytek Vigor2765
Draytek Vigor2765ac Firmware<4.4.2
Draytek Vigor2765ac
Draytek Vigor2765vac Firmware<4.4.2
Draytek Vigor2765vac
Draytek Vigor2766 Firmware<4.4.2
Draytek Vigor2766
Draytek Vigor2766ac Firmware<4.4.2
Draytek Vigor2766ac
Draytek Vigor2766vac Firmware<4.4.2
Draytek Vigor2766vac
Draytek Vigor2832 Firmware<3.9.6
Draytek Vigor2832
Draytek Vigor2865 Firmware<4.4.0
Draytek Vigor2865
Draytek Vigor2865ax Firmware<4.4.0
Draytek Vigor2865ax
Draytek Vigor2865ac Firmware<4.4.0
Draytek Vigor2865ac
Draytek Vigor2865vac Firmware<4.4.0
Draytek Vigor2865vac
Draytek Vigor2865l Firmware<4.4.0
Draytek Vigor2865l
Draytek Vigor2865lac Firmware<4.4.0
Draytek Vigor2865lac
Draytek Vigor2866 Firmware<4.4.0
Draytek Vigor2866
Draytek Vigor2866ax Firmware<4.4.0
Draytek Vigor2866ax
Draytek Vigor2866ac Firmware<4.4.0
Draytek Vigor2866ac
Draytek Vigor2866vac Firmware<4.4.0
Draytek Vigor2866vac
Draytek Vigor2866l Firmware<4.4.0
Draytek Vigor2866l
Draytek Vigor2866lac Firmware<4.4.0
Draytek Vigor2866lac

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203