CVE-2020-28968 : Draytek VigorAP 1000C contains a stored cross-site scripting (XSS) vulnerability

Draytek VigorAP 1000C contains a stored cross-site scripting (XSS) vulnerability in the RADIUS Setting - RADIUS Server Configuration module. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload in the username input field.

Published 2021-10-22 20:15:11

Updated 2021-10-28 16:48:42

Source MITRE

View at NVD, CVE.org

Vulnerability category: Cross site scripting (XSS)

Products affected by CVE-2020-28968

Draytek » Vigorap 910c Firmware » Version: 1.2.5
cpe:2.3:o:draytek:vigorap_910c_firmware:1.2.5:*:*:*:*:*:*:*
Matching versions
When used together with: Draytek » Vigorap 910c » Version: N/A
Draytek » Vigorap 1000c Firmware » Version: 1.3.2
cpe:2.3:o:draytek:vigorap_1000c_firmware:1.3.2:*:*:*:*:*:*:*
Matching versions
When used together with: Draytek » Vigorap 1000c » Version: N/A
Draytek » Vigorap 700 Firmware » Version: 1.11
cpe:2.3:o:draytek:vigorap_700_firmware:1.11:*:*:*:*:*:*:*
Matching versions
When used together with: Draytek » Vigorap 700 » Version: N/A
Draytek » Vigorap 710 Firmware » Version: 1.2.5
cpe:2.3:o:draytek:vigorap_710_firmware:1.2.5:*:*:*:*:*:*:*
Matching versions
When used together with: Draytek » Vigorap 710 » Version: N/A
Draytek » Vigorap 800 Firmware » Version: 1.1.4
cpe:2.3:o:draytek:vigorap_800_firmware:1.1.4:*:*:*:*:*:*:*
Matching versions
When used together with: Draytek » Vigorap 800 » Version: N/A
Draytek » Vigorap 802 Firmware » Version: 1.3.2
cpe:2.3:o:draytek:vigorap_802_firmware:1.3.2:*:*:*:*:*:*:*
Matching versions
When used together with: Draytek » Vigorap 802 » Version: N/A
Draytek » Vigorap 810 Firmware » Version: 1.2.5
cpe:2.3:o:draytek:vigorap_810_firmware:1.2.5:*:*:*:*:*:*:*
Matching versions
When used together with: Draytek » Vigorap 810 » Version: N/A
Draytek » Vigorap 900 Firmware » Version: 1.2.0
cpe:2.3:o:draytek:vigorap_900_firmware:1.2.0:*:*:*:*:*:*:*
Matching versions
When used together with: Draytek » Vigorap 900 » Version: N/A
Draytek » Vigorap 902 Firmware » Version: 1.2.5
cpe:2.3:o:draytek:vigorap_902_firmware:1.2.5:*:*:*:*:*:*:*
Matching versions
When used together with: Draytek » Vigorap 902 » Version: N/A
Draytek » Vigorap 903 Firmware » Version: 1.3.1
cpe:2.3:o:draytek:vigorap_903_firmware:1.3.1:*:*:*:*:*:*:*
Matching versions
When used together with: Draytek » Vigorap 903 » Version: N/A
Draytek » Vigorap 912c Firmware » Version: 1.3.2
cpe:2.3:o:draytek:vigorap_912c_firmware:1.3.2:*:*:*:*:*:*:*
Matching versions
When used together with: Draytek » Vigorap 912c » Version: N/A
Draytek » Vigorap 918r Firmware » Version: 1.3.2
cpe:2.3:o:draytek:vigorap_918r_firmware:1.3.2:*:*:*:*:*:*:*
Matching versions
When used together with: Draytek » Vigorap 918r » Version: N/A
Draytek » Vigorap 920r Firmware » Version: 1.3.0
cpe:2.3:o:draytek:vigorap_920r_firmware:1.3.0:*:*:*:*:*:*:*
Matching versions
When used together with: Draytek » Vigorap 920r » Version: N/A

Exploit prediction scoring system (EPSS) score for CVE-2020-28968

EPSS FAQ

0.21%

Probability of exploitation activity in the next 30 days EPSS Score History

~ 43 %

Percentile, the proportion of vulnerabilities that are scored at or less

CVSS scores for CVE-2020-28968

Base Score	Base Severity	CVSS Vector	Exploitability Score	Impact Score	Score Source
3.5	LOW	AV:N/AC:M/Au:S/C:N/I:P/A:N	6.8	2.9	NIST
Access Vector: Network Access Complexity: Medium Authentication: Single Confidentiality Impact: None Integrity Impact: Partial Availability Impact: None
5.4	MEDIUM	CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:L/I:L/A:N	2.3	2.7	NIST
Attack Vector: Network Attack Complexity: Low Privileges Required: Low User Interaction: Required Scope: Changed Confidentiality: Low Integrity: Low Availability: None

CWE ids for CVE-2020-28968

CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')

The product does not neutralize or incorrectly neutralizes user-controllable input before it is placed in output that is used as a web page that is served to other users.

Assigned by: nvd@nist.gov (Primary)

References for CVE-2020-28968

https://www.vulnerability-lab.com/get_content.php?id=2244

Exploit;Third Party Advisory

Jump to

Vulnerability Details : CVE-2020-28968

Products affected by CVE-2020-28968

Exploit prediction scoring system (EPSS) score for CVE-2020-28968

CVSS scores for CVE-2020-28968

CWE ids for CVE-2020-28968

References for CVE-2020-28968