CVE-2025-10547 - Vulnerability Details - OpenCVE

An uninitialized variable in the HTTP CGI request arguments processing component of Vigor Routers running DrayOS may allow an attacker the ability to perform RCE on the appliance through memory corruption.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

No EPSS score available.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

No data.

References

Link	Providers
https://www.draytek.com/about/security-advisory/use-of-uninitialized-variable-vulnerabilities/

History

Fri, 03 Oct 2025 11:45:00 +0000

Type	Values Removed	Values Added
Description		An uninitialized variable in the HTTP CGI request arguments processing component of Vigor Routers running DrayOS may allow an attacker the ability to perform RCE on the appliance through memory corruption.
Title		CVE-2025-10547
References		https://www.draytek.com/about/security-advisory/use-of-uninitialized-variable-vulnerabilities/

MITRE

Status: PUBLISHED

Assigner: certcc

Published: 2025-10-03T11:35:43.752Z

Updated: 2025-10-03T11:35:43.752Z

Reserved: 2025-09-16T11:35:24.694Z

Link: CVE-2025-10547

Vulnrichment

No data.

NVD

Status : Received

Published: 2025-10-03T12:15:42.993

Modified: 2025-10-03T12:15:42.993

Link: CVE-2025-10547

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"cveId": "CVE-2025-10547", "assignerOrgId": "37e5125f-f79b-445b-8fad-9564f167944b", "state": "PUBLISHED", "assignerShortName": "certcc", "dateReserved": "2025-09-16T11:35:24.694Z", "datePublished": "2025-10-03T11:35:43.752Z", "dateUpdated": "2025-10-03T11:35:43.752Z"}, "containers": {"cna": {"title": "CVE-2025-10547", "descriptions": [{"lang": "en", "value": "An uninitialized variable in the HTTP CGI request arguments processing component of Vigor Routers running DrayOS may allow an attacker the ability to perform RCE on the appliance through memory corruption."}], "source": {"discovery": "UNKNOWN"}, "affected": [{"vendor": "DrayTek Corporation", "product": "Vigor1000B", "versions": [{"status": "affected", "version": "4.4.5.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2962", "versions": [{"status": "affected", "version": "4.4.5.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor3910", "versions": [{"status": "affected", "version": "4.4.3.6"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor3912", "versions": [{"status": "affected", "version": "4.4.5.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2135", "versions": [{"status": "affected", "version": "4.5.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2763", "versions": [{"status": "affected", "version": "4.5.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2765", "versions": [{"status": "affected", "version": "4.5.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2766", "versions": [{"status": "affected", "version": "4.5.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2865", "versions": [{"status": "affected", "version": "4.5.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2865 LTE Series", "versions": [{"status": "affected", "version": "4.5.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2865L-5G Series", "versions": [{"status": "affected", "version": "4.5.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2866", "versions": [{"status": "affected", "version": "4.5.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2866 LTE", "versions": [{"status": "affected", "version": "4.5.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2927", "versions": [{"status": "affected", "version": "4.5.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor 2927 LTE", "versions": [{"status": "affected", "version": "4.5.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2927L-5G", "versions": [{"status": "affected", "version": "4.5.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2915", "versions": [{"status": "affected", "version": "4.4.6.1"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2862", "versions": [{"status": "affected", "version": "3.9.9.12"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2862 LTE", "versions": [{"status": "affected", "version": "3.9.9.12"}]}, {"vendor": "DrayTek Corporation", "product": "Vigor2926", "versions": [{"status": "affected", "version": "3.9.9.12"}]}], "problemTypes": [{"descriptions": [{"lang": "en", "description": "CWE-456"}]}], "references": [{"url": "https://www.draytek.com/about/security-advisory/use-of-uninitialized-variable-vulnerabilities/"}], "x_generator": {"engine": "VINCE 3.0.26", "env": "prod", "origin": "https://cveawg.mitre.org/api/cve/CVE-2025-10547"}, "providerMetadata": {"orgId": "37e5125f-f79b-445b-8fad-9564f167944b", "shortName": "certcc", "dateUpdated": "2025-10-03T11:35:43.752Z"}}}}