Vulnerabilities

CVE-2025-10547

by Fred · 03/10/2025

An uninitialized variable in the HTTP CGI request arguments processing component of Vigor Routers running DrayOS may allow an attacker the ability to perform RCE on the appliance through memory corruption.

More information : https://www.draytek.com/about/security-advisory/use-of-uninitialized-variable-vulnerabilities/

Similar

Tags: Cybersecurity Alert