CVE-2019-16534

CVE-2019-16534

EPSS 0.8%

On DrayTek Vigor2925 devices with firmware 3.8.4.3, XSS exists via a crafted WAN name on the General Setup screen. NOTE: this is an end-of-life product.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://www.draytek.com/about/security-advisory/urgent-security-updates-to-draytek-routers https://www.facebook.com/Huang.YuHsiang.Phone/posts/1815316691945755