Security Advisory

CVE-2023-6265

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2023-11-22 19:47:07

Last updated 2024-08-02 08:28:20

Assigner cisa-cg

State PUBLISHED

Description

** UNSUPPORTED WHEN ASSIGNED ** Draytek Vigor2960 v1.5.1.4 and v1.5.1.5 are vulnerable to directory traversal via the mainfunction.cgi dumpSyslog option parameter allowing an authenticated attacker with access to the web management interface to delete arbitrary files. Vigor2960 is no longer supported.

← Browse all CVEs View on cve.org ↗