VYPR
High severity8.0NVD Advisory· Published Oct 3, 2024· Updated Jun 17, 2026

CVE-2024-41590

CVE-2024-41590

Description

Several CGI endpoints are vulnerable to buffer overflows, by authenticated users, because of missing bounds checking on parameters passed through POST requests to the strcpy function on DrayTek Vigor310 devices through 4.3.2.6.

Affected products

2
  • Draytek/Vigor3910cpe-rescue2 versions
    (expand)+ 1 more
    • (no CPE)
    • (no CPE)range: <=4.3.2.6

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.