A stack-based buffer overflow on DrayTek Vigor2960, Vigor3900, and Vigor300B devices before 1.5.1.1 allows remote attackers to execute arbitrary code via the formuserphonenumber parameter in an authusersms action to mainfunction.cgi.
History

No history.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2020-06-23T11:50:58

Updated: 2024-08-04T13:00:52.170Z

Reserved: 2020-06-23T00:00:00

Link: CVE-2020-14993

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Modified

Published: 2020-06-23T12:15:13.503

Modified: 2024-11-21T05:04:35.537

Link: CVE-2020-14993

cve-icon Redhat

No data.