Vulnerabilities (CVE)

Filtered by vendor Draytek Subscribe

Filtered by product Vigorap 910c Firmware

CVSS v3 Filter

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Search

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2020-28968	1 Draytek	26 Vigorap 1000c, Vigorap 1000c Firmware, Vigorap 700 and 23 more	2021-10-28	3.5 LOW	5.4 MEDIUM
Draytek VigorAP 1000C contains a stored cross-site scripting (XSS) vulnerability in the RADIUS Setting - RADIUS Server Configuration module. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the username input field.
CVE-2017-11650	1 Draytek	2 Vigorap 910c, Vigorap 910c Firmware	2021-06-03	4.3 MEDIUM	6.1 MEDIUM
Cross-site scripting (XSS) vulnerability in DrayTek Vigor AP910C devices with firmware 1.2.0_RC3 build r6594 allows remote attackers to inject arbitrary web script or HTML via vectors involving home.asp.