[Security Vulnerability Alert] DrayTek DrayOS has a high-risk security vulnerability (CVE-2025-10547). Please confirm and patch it as soon as possible.

 
2025/10/15 ~ 2026/4/15
View Count:31

Forwarded from the National Information Security Information Sharing and Analysis Center (NISAC-200-202510-00000003)

[Description]
Researchers have discovered a Use of Uninitialized Variable vulnerability (CVE-2025-10547) in DrayTek DrayOS. An unauthenticated remote attacker can send specially crafted HTTP or HTTPS requests to the device's web interface, causing memory corruption and system crashes. Under certain conditions, it can even allow arbitrary code execution. Please verify and patch this vulnerability as soon as possible.

[Affected Platforms]
● Vigor1000B models running versions 4.4.3.6 (or earlier)
● Vigor2962 models running versions 4.4.3.6 (or earlier) or 4.4.5.1 (or earlier)
● Vigor3910 models running versions 4.4.3.6 (or earlier) or 4.4.5.1 (or earlier)
● Vigor3912 models running versions 4.4.3.6 (or earlier) or 4.4.5.1 (or earlier)
● Vigor2135 models running versions 4.5.1 (or earlier)
● Vigor2763 models running versions 4.5.1 (or earlier)
● Vigor2765 models running versions 4.5.1 (or earlier)
● Vigor2766 models running versions 4.5.1 (or earlier)
● Vigor2865 Series models running versions 4.5.1 (or earlier)
● Vigor2865 LTE Series models running versions 4.5.1 (exclusive) and earlier
● Vigor2865L-5G Series models running versions 4.5.1 (exclusive) and earlier
● Vigor2866 Series models running versions 4.5.1 (exclusive) and earlier
● Vigor2866 LTE Series models running versions 4.5.1 (exclusive) and earlier
● Vigor2927 Series models running versions 4.5.1 (exclusive) and earlier
● Vigor2927 LTE Series models running versions 4.5.1 (exclusive) and earlier
● Vigor2927L-5G Series models running versions 4.5.1 (exclusive) and earlier
● Vigor2915 Series models running versions 4.4.6.1 (exclusive) and earlier
● Vigor2862 Series models running versions 3.9.9.12 (exclusive) and earlier
● Vigor2862 LTE Series models running versions 3.9.9.12 (exclusive) and earlier
● Vigor2926 Series models running versions earlier than 3.9.9.12 (not included)
● Vigor2952 models running versions earlier than 3.9.8.8 (not included)
● Vigor2952P models running versions earlier than 3.9.8.8 (not included)
● Vigor3220 models running versions earlier than 3.9.8.8 (not included)
● Vigor2860 Series models running versions earlier than 3.9.8.6 (not included)
● Vigor2860 LTE Series models running versions earlier than 3.9.8.6 (not included)
● Vigor2925 Series models running versions earlier than 3.9.8.6 (not included)
● Vigor2925 LTE Series models running versions earlier than 3.9.8.6 (not included)
● Vigor2133 Series models running versions earlier than 3.9.9.4 (not included)
● Vigor2762 Series models running versions earlier than 3.9.9.4 (not included)
● Vigor2832 Series models: Versions 3.9.9.4 and earlier
● Vigor2620 Series models: Versions 3.9.9.5 and earlier
● VigorLTE 200n models: Versions 3.9.9.5 and earlier

[Recommended Action]
Officials have released a fix for this vulnerability. Please refer to the official instructions for updating. The URLs are as follows:
https://www.draytek.com/about/security-advisory/use-of-uninitialized-variable-vulnerabilities/ https://www.draytek.com/zh/support/latest-firmwares/

[References]
1. https://nvd.nist.gov/vuln/detail/CVE-2025-10547
2. https://www.draytek.com/about/security-advisory/use-of-uninitialized-variable-vulnerabilities/
3. https://www.draytek.com/en/support/latest-firmwares/

Files
None
【Back】
Top↑