Details of VAR-202306-0072

ID

VAR-202306-0072

CVE

CVE-2023-33778

TITLE

Draytek Vigor Routers Trust Management Issue Vulnerability

Trust: 0.6

sources: CNNVD: CNNVD-202306-003

DESCRIPTION

Draytek Vigor Routers firmware versions below 3.9.6/4.2.4, Access Points firmware versions below v1.4.0, Switches firmware versions below 2.6.7, and Myvigor firmware versions below 2.3.2 were discovered to use hardcoded encryption keys which allows attackers to bind any affected device to their own account. Attackers are then able to create WCF and DrayDDNS licenses and synchronize them from the website

Trust: 0.99

sources: NVD: CVE-2023-33778 // VULMON: CVE-2023-33778

AFFECTED PRODUCTS

vendor:	draytek	model:	vigor2832n	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2962	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2763ac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor167	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigorswitch pq2200xb	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigor2862b	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2620ln	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2766ac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2927vac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2927ac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2862vac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2866ax	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor165	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor3910	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2927ax	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigorap 1060c	scope:	lt	version:	1.4.0	Trust: 1.0
vendor:	draytek	model:	vigor166	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2862ln	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigorswitch g1085	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigor2766vac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigorswitch fx2120	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigorswitch p1282	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigor2862ac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2620l	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigorap 960c	scope:	lt	version:	1.4.0	Trust: 1.0
vendor:	draytek	model:	vigor2766ac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigorap 903	scope:	lt	version:	1.4.0	Trust: 1.0
vendor:	draytek	model:	vigor2832n	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor167	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2865vac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigorswitch q2200x	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigor2765ax	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2135ac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2862l	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor130	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2766ax	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2926 plus	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2862ac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2135vac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigorap 918r	scope:	lt	version:	1.4.0	Trust: 1.0
vendor:	draytek	model:	vigor2866ax	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2865ax	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor3910	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor1000b	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2135ax	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2927l	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2866lac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2862n	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigorswitch g2540xs	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigor2866ac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2765ac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2915ac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2862l	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2766ax	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2927f	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2927lac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2865lac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor166	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigorswitch g1282	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigor2862lac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2865l	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2962	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigorlte 200n	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2862b	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2862bn	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2862n	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2765vac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2763ac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2620ln	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2866l	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2865ac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2915ac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigorswitch g2100	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigor2620ln	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigorswitch p2280x	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigor2926 plus	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2927vac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2962	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2620l	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2862b	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2927ac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	myvigor	scope:	lt	version:	2.3.2	Trust: 1.0
vendor:	draytek	model:	vigor2862vac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2862lac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2865l	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2135fvac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigorswitch p2540xs	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigor2766vac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2866vac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2862bn	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2927ax	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2765vac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigorswitch p2100	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigor2866lac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2862ln	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2135vac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2832n	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor167	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2865ac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor1000b	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigorap 1000c	scope:	lt	version:	1.4.0	Trust: 1.0
vendor:	draytek	model:	vigor2135ax	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2927l	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2865lac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigorswitch g2280x	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigorap 912c	scope:	lt	version:	1.4.0	Trust: 1.0
vendor:	draytek	model:	vigor165	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigorlte 200n	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2765ac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2866ax	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2866ac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2765ax	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2135ac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor130	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor3910	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2135vac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigorswitch g2121	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigor2865ax	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2927ax	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigorswitch pq2121x	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigor2135ax	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2927l	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor166	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2766ac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2862ln	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2927f	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2866ac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2765ac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2866l	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2927lac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2865vac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2862ac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2765ax	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2135ac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor130	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2926 plus	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigorap 906	scope:	lt	version:	1.4.0	Trust: 1.0
vendor:	draytek	model:	vigor2915ac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2135fvac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2865ax	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2620l	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2866vac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2763ac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2866l	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2862l	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2766ax	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2866lac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2927vac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2862lac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2865l	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2927f	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2865vac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2927ac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2862vac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2927lac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigorswitch g1080	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigor2862bn	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2865lac	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigor2862n	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2135fvac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2765vac	scope:	lt	version:	4.2.4	Trust: 1.0
vendor:	draytek	model:	vigor2766vac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2866vac	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor165	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigorlte 200n	scope:	lt	version:	3.9.6	Trust: 1.0
vendor:	draytek	model:	vigorswitch q2121x	scope:	lt	version:	2.6.7	Trust: 1.0
vendor:	draytek	model:	vigor1000b	scope:	gte	version:	4.0.0	Trust: 1.0
vendor:	draytek	model:	vigor2865ac	scope:	lt	version:	4.2.4	Trust: 1.0

sources: NVD: CVE-2023-33778

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2023-33778
value:	CRITICAL
Trust: 1.0
134c704f-9b21-4f2e-91b3-4a467353bcc0:	CVE-2023-33778
value:	CRITICAL
Trust: 1.0
CNNVD:	CNNVD-202306-003
value:	CRITICAL
Trust: 0.6

nvd@nist.gov:	CVE-2023-33778
baseSeverity:	CRITICAL
baseScore:	9.8
vectorString:	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	3.9
impactScore:	5.9
version:	3.1
Trust: 2.0

sources: CNNVD: CNNVD-202306-003 // NVD: CVE-2023-33778 // NVD: CVE-2023-33778

PROBLEMTYPE DATA

problemtype:

CWE-798

Trust: 1.0

sources: NVD: CVE-2023-33778

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-202306-003

TYPE

trust management problem

Trust: 0.6

sources: CNNVD: CNNVD-202306-003

EXTERNAL IDS

db:	NVD	id:	CVE-2023-33778	Trust: 1.7
db:	CNNVD	id:	CNNVD-202306-003	Trust: 0.6
db:	VULMON	id:	CVE-2023-33778	Trust: 0.1

sources: VULMON: CVE-2023-33778 // CNNVD: CNNVD-202306-003 // NVD: CVE-2023-33778

REFERENCES

url:	https://gist.github.com/ji4n1ng/6d028709d39458f5ab95b3ea211225ef	Trust: 1.7
url:	https://cxsecurity.com/cveshow/cve-2023-33778/	Trust: 0.6
url:	https://nvd.nist.gov	Trust: 0.1

sources: VULMON: CVE-2023-33778 // CNNVD: CNNVD-202306-003 // NVD: CVE-2023-33778

SOURCES

db:	VULMON	id:	CVE-2023-33778
db:	CNNVD	id:	CNNVD-202306-003
db:	NVD	id:	CVE-2023-33778

LAST UPDATE DATE

2025-01-10T23:14:18.414000+00:00

SOURCES UPDATE DATE

db:	VULMON	id:	CVE-2023-33778	date:	2023-06-01T00:00:00
db:	CNNVD	id:	CNNVD-202306-003	date:	2023-06-12T00:00:00
db:	NVD	id:	CVE-2023-33778	date:	2025-01-09T18:15:26.790

SOURCES RELEASE DATE

db:	VULMON	id:	CVE-2023-33778	date:	2023-06-01T00:00:00
db:	CNNVD	id:	CNNVD-202306-003	date:	2023-06-01T00:00:00
db:	NVD	id:	CVE-2023-33778	date:	2023-06-01T04:15:10.313