2023-03-15 00:00:00
mitre
PUBLISHED
DrayTek Vigor2960 v1.5.1.4 allows an authenticated attacker with network access to the web management interface to inject operating system commands via the mainfunction.cgi parameter parameter. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.