CVE-2021-20123

high

Description

A local file inclusion vulnerability exists in Draytek VigorConnect 1.6.0-B3 in the file download functionality of the DownloadFileServlet endpoint. An unauthenticated attacker could leverage this vulnerability to download arbitrary files from the underlying operating system with root privileges.

From the Tenable Blog

CVE-2021-20123, CVE-2021-20124: DrayTek Vulnerabilities Discovered by Tenable Research Added to CISA KEV

CVE-2021-20123, CVE-2021-20124: DrayTek Vulnerabilities Discovered by Tenable Research Added to CISA KEV

Published: 2024-09-09

With patches out for three years, attackers have set their sights on a pair of vulnerabilities affecting DrayTek VigorConnect.

References

https://thehackernews.com/2025/03/cisa-flags-two-six-year-old-sitecore.html

https://www.greynoise.io/blog/in-the-wild-activity-against-draytek-routers

https://www.tenable.com/blog/cve-2021-20123-cve-2021-20124-draytek-vulnerabilities-discovered-by-tenable-research-added-to

https://www.securityweek.com/draytek-vulnerabilities-added-to-cisa-kev-catalog-exploited-in-global-campaign/

https://securityonline.info/cisa-issues-alert-three-actively-exploited-vulnerabilities-demand-immediate-attention/?&web_view=true

https://www.tenable.com/security/research/tra-2021-42

Details

Source: Mitre, NVD

Published: 2021-10-13

Updated: 2025-03-12

Risk Information

CVSS v2

Base Score: 7.8

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:N/A:N

Severity: High

CVSS v3

Base Score: 7.5

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Severity: High