Draytek Vigor 165
0 remedies
cpe:2.3:h:draytek:vigor165:*:*:*:*:*:*:*, +1 more
0 remedies
- < 4.2.6
Draytek Routers Password Storage Vulnerability in Plaintext
Vulnerability
A vulnerability exists in several Draytek router models that store passwords in plaintext. Affected models include the Vigor 165/166 (prior to v4.2.6), Vigor 2620/LTE200 (prior to v3.9.8.8), Vigor 2860/2925 (prior to v3.9.7), Vigor 2862/2926 (prior to v3.9.9.4), Vigor 2133/2762/2832 (prior to v3.9.8), Vigor 2135/2765/2766 (prior to v4.4.5.1), Vigor 2865/2866/2927 (prior to v4.4.5.3), Vigor 2962/3910 (prior to v4.3.2.7), and Vigor 3912 (prior to v4.3.5.2). Additionally, the Vigor 2925 is vulnerable through v3.9.6.
Impact
This vulnerability allows for the exposure of stored passwords, potentially leading to unauthorized access if these passwords are used for sensitive accounts or services.
Added: Jun 9, 2025, 7:46 PM
Updated: Jun 9, 2025, 7:46 PM
Vulnerability Rating
Custom Algorithm
spread
4.5impact
2.5exploitability
7.0remediation
0.0relevance
0.0threat
0.0urgency
2.9incentive
5.8Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.