← ExploitWatch
HomeExploited Vulnerabilities

CVE-2020-15415 — Actively Exploited: Multiple Vigor Routers (DrayTek)

DrayTek Vigor3900, Vigor2960, and Vigor300B devices contain an OS command injection vulnerability in cgi-bin/mainfunction.cgi/cvmcfgupload that allows for remote code execution via shell metacharacters in a filename when the text/x-python-script content type is used.

CVE IDCVE-2020-15415
VendorDrayTek
ProductMultiple Vigor Routers
Vulnerability nameDrayTek Multiple Vigor Routers OS Command Injection Vulnerability
Date added2024-09-30
Remediation due2024-10-21
Known ransomware useUnknown
Required actionApply mitigations per vendor instructions or discontinue use of the product if mitigations are unavailable.
DescriptionDrayTek Vigor3900, Vigor2960, and Vigor300B devices contain an OS command injection vulnerability in cgi-bin/mainfunction.cgi/cvmcfgupload that allows for remote code execution via shell metacharacters in a filename when the text/x-python-script content type is used.
SourceCISA Known Exploited Vulnerabilities

🔍 Search all exploited vulnerabilities →