** UNSUPPORTED WHEN ASSIGNED ** Draytek Vigor2960 v1.5.1.4 and v1.5.1.5 are vulnerable to directory traversal via the mainfunction.cgi dumpSyslog 'option' parameter allowing an authenticated attacker with access to the web management interface to delete arbitrary files. Vigor2960 is no longer supported.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cisa-cg
Published: 2023-11-22T19:47:07.692Z
Updated: 2024-08-02T08:28:20.179Z
Reserved: 2023-11-22T19:31:54.376Z
Link: CVE-2023-6265
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-11-22T20:15:09.600
Modified: 2024-11-21T08:43:29.440
Link: CVE-2023-6265
Redhat
No data.