CVE-2023-1009

Public Exploit

DrayTek Vigor 2960 Web Management Interface mainfunction.cgi sub_1DF14 path traversal

Description

** UNSUPPORTED WHEN ASSIGNED ** A vulnerability classified as critical has been found in DrayTek Vigor 2960 1.5.1.4/1.5.1.5. Affected is the function sub_1DF14 of the file /cgi-bin/mainfunction.cgi of the component Web Management Interface. The manipulation of the argument option with the input /../etc/passwd- leads to path traversal. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used. VDB-221742 is the identifier assigned to this vulnerability. NOTE: This vulnerability only affects products that are no longer supported by the maintainer.

References

Link	Tags
https://vuldb.com/?id.221742	third party advisory vdb entry technical description
https://vuldb.com/?ctiid.221742	signature permissions required
https://github.com/xxy1126/Vuln/blob/main/Draytek/1.md	third party advisory exploit

Frequently Asked Questions

What is the severity of CVE-2023-1009?: CVE-2023-1009 has been scored as a medium severity vulnerability.
How to fix CVE-2023-1009?: To fix CVE-2023-1009, make sure you are using an up-to-date version of the affected component(s) by checking the vendor release notes. As for now, there are no other specific guidelines available.
Is CVE-2023-1009 being actively exploited in the wild?: It is possible that CVE-2023-1009 is being exploited or will be exploited in a near future based on public information. According to its EPSS score, there is a ~3% probability that this vulnerability will be exploited by malicious actors in the next 30 days.
What software or system is affected by CVE-2023-1009?: CVE-2023-1009 affects DrayTek Vigor 2960.

Description

Category

CWE-22 – Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')

References

Frequently Asked Questions