VYPR
Medium severity6.5NVD Advisory· Published Nov 22, 2023· Updated Jun 17, 2026

CVE-2023-6265

CVE-2023-6265

Description

UNSUPPORTED WHEN ASSIGNED Draytek Vigor2960 v1.5.1.4 and v1.5.1.5 are vulnerable to directory traversal via the mainfunction.cgi dumpSyslog 'option' parameter allowing an authenticated attacker with access to the web management interface to delete arbitrary files. Vigor2960 is no longer supported.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Draytek/Vigor2962llm-fuzzy2 versions
    1.5.1.4, 1.5.1.5+ 1 more
    • (no CPE)range: 1.5.1.4, 1.5.1.5
    • (no CPE)range: 1.5.1.4

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.