CVE-2024-41593: Buffer Overflow
First published: Thu Oct 03 2024(Updated: )
DrayTek Vigor310 devices through 4.3.2.6 allow a remote attacker to execute arbitrary code via the function ft_payload_dns(), because a byte sign-extension operation occurs for the length argument of a _memcpy call, leading to a heap-based Buffer Overflow.
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| All of | ||
| Draytek Vigor3912 Firmware | <4.3.6.1 | |
| Draytek Vigor3912 | ||
| All of | ||
| Any of | ||
| Draytek Vigor2962 Firmware | <4.3.2.8 | |
| Draytek Vigor2962 Firmware | >=4.4.0.0<4.4.3.1 | |
| Draytek Vigor2962 | ||
| All of | ||
| Any of | ||
| Draytek Vigor3910 Firmware | <4.3.2.8 | |
| Draytek Vigor3910 Firmware | >=4.4.0.0<4.4.3.1 | |
| DrayTek Vigor3910 | ||
| All of | ||
| Draytek Vigor165 Firmware | <4.2.7 | |
| Draytek Vigor165 | ||
| All of | ||
| Any of | ||
| Draytek Vigor1000b Firmware | <4.3.2.8 | |
| Draytek Vigor1000b Firmware | >=4.4.0.0<4.4.3.1 | |
| Draytek Vigor1000b | ||
| All of | ||
| Draytek Vigor166 Firmware | <4.2.7 | |
| Draytek Vigor166 | ||
| All of | ||
| Draytek Vigor2135 Firmware | <4.4.5.3 | |
| Draytek Vigor2135 | ||
| All of | ||
| Draytek Vigor2763 Firmware | <4.4.5.3 | |
| Draytek Vigor2763 | ||
| All of | ||
| Draytek Vigor2765 Firmware | <4.4.5.3 | |
| Draytek Vigor2765 | ||
| All of | ||
| Draytek Vigor2865 Firmware | <4.4.5.2 | |
| Draytek Vigor2865 | ||
| All of | ||
| Draytek Vigor2766 Firmware | <4.4.5.3 | |
| Draytek Vigor2766 | ||
| All of | ||
| Draytek Vigor2866 Firmware | <4.4.5.2 | |
| Draytek Vigor2866 | ||
| All of | ||
| Draytek Vigor2915 Firmware | <4.4.5.3 | |
| Draytek Vigor2915 | ||
| All of | ||
| Draytek Vigor2620 Firmware | ||
| Draytek Vigor2620 | ||
| All of | ||
| Draytek Vigorlte200 Firmware | ||
| Draytek Vigorlte200 | ||
| All of | ||
| Draytek Vigor2133 Firmware | ||
| Draytek Vigor2133 | ||
| All of | ||
| Draytek Vigor2762 Firmware | ||
| Draytek Vigor2762 | ||
| All of | ||
| Draytek Vigor2832 Firmware | ||
| Draytek Vigor2832 | ||
| All of | ||
| Draytek Vigor2860 Firmware | ||
| Draytek Vigor2860 | ||
| All of | ||
| Draytek Vigor2862 Firmware | ||
| Draytek Vigor2862 | ||
| All of | ||
| Draytek Vigor2925 Firmware | ||
| Draytek Vigor2925 | ||
| All of | ||
| Draytek Vigor2926 Firmware | ||
| Draytek Vigor2926 | ||
| All of | ||
| Draytek Vigor2952 Firmware | ||
| Draytek Vigor2952 | ||
| All of | ||
| Draytek Vigor3220 Firmware | ||
| Draytek Vigor3220 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
- agent/references
- agent/description
- agent/first-publish-date
- agent/type
- agent/author
- agent/event
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/weakness
- agent/softwarecombine
- agent/tags
- collector/nvd-api
- source/NVD
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/draytek
- canonical/draytek vigor3912 firmware
- canonical/draytek vigor3912
- canonical/draytek vigor2962 firmware
- version/draytek vigor2962 firmware/4.4.0.0
- canonical/draytek vigor2962
- canonical/draytek vigor3910 firmware
- version/draytek vigor3910 firmware/4.4.0.0
- canonical/draytek vigor3910
- canonical/draytek vigor165 firmware
- canonical/draytek vigor165
- canonical/draytek vigor1000b firmware
- version/draytek vigor1000b firmware/4.4.0.0
- canonical/draytek vigor1000b
- canonical/draytek vigor166 firmware
- canonical/draytek vigor166
- canonical/draytek vigor2135 firmware
- canonical/draytek vigor2135
- canonical/draytek vigor2763 firmware
- canonical/draytek vigor2763
- canonical/draytek vigor2765 firmware
- canonical/draytek vigor2765
- canonical/draytek vigor2865 firmware
- canonical/draytek vigor2865
- canonical/draytek vigor2766 firmware
- canonical/draytek vigor2766
- canonical/draytek vigor2866 firmware
- canonical/draytek vigor2866
- canonical/draytek vigor2915 firmware
- canonical/draytek vigor2915
- canonical/draytek vigor2620 firmware
- canonical/draytek vigor2620
- canonical/draytek vigorlte200 firmware
- canonical/draytek vigorlte200
- canonical/draytek vigor2133 firmware
- canonical/draytek vigor2133
- canonical/draytek vigor2762 firmware
- canonical/draytek vigor2762
- canonical/draytek vigor2832 firmware
- canonical/draytek vigor2832
- canonical/draytek vigor2860 firmware
- canonical/draytek vigor2860
- canonical/draytek vigor2862 firmware
- canonical/draytek vigor2862
- canonical/draytek vigor2925 firmware
- canonical/draytek vigor2925
- canonical/draytek vigor2926 firmware
- canonical/draytek vigor2926
- canonical/draytek vigor2952 firmware
- canonical/draytek vigor2952
- canonical/draytek vigor3220 firmware
- canonical/draytek vigor3220