top of page

Over 400,000 DrayTek Routers vulnerable to two new critical vulnerabilities

Oct 14, 2024

1 min read

A total of 14 vulnerabilities affecting DrayTek Vigor routers were disclosed yesterday in a report by Forescout. The vulnerabilities were scored as follows: 2 critical severity, 9 high severity, and 3 medium severity. Most of these vulnerabilities are found in DrayTek VigorConnect, the web control interface for Vigor routers.

Source: censys.com


The most serious of these vulnerabilities is CVE-2024-41592 which receives the maximum CVSS score of 10.0.


DrayTek have released firmware updates for the affected devices to fix the vulnerabilities. It is recommended that the updates are deployed as soon as possible. If the firmware update cannot be applied immediately, consider restricting public access to the DrayTek web interface to prevent exploitation from a remote attacker.


More Information:


14 Bugs in DrayTek Vigor Routers Disclosed [censys.com]



Oct 14, 2024

1 min read

© 2025 by BlueHat Cyber Ltd. All rights reserved.

​

| Privacy Policy |
| Vulnerability Disclosure Policy |

​

BlueHat Cyber Ltd. is a limited company registered in England and Wales. Registered number: 15306261. 
Registered office: 960 Capability Green, Luton, United Kingdom, LU1 3PE

  • X
  • Threads
bottom of page