GHSA-qcw6-77mc-69mj
GitHub Security Advisory
⚠ Unreviewed
HIGH
Has CVE
Advisory Details
DrayTek Vigor3900 1.5.1.3 contains a post-authentication command injection vulnerability. This vulnerability occurs when the `action` parameter in `cgi-bin/mainfunction.cgi` is set to `setSWMGroup.`
Related CVEs
Key Information
7.5
/10
Dataset
Last updated: August 1, 2025 6:44 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.