Quote Builder
Quote Builder
Contact Us
Contact Us
Speed Checker
Speed Checker
Contact Us
Contact Us
Quote Builder
Quote Builder
Customer Support

Speak to an expert : Live Chat exa online chat

exa logo white

Home

exa foundation logo white

Foundation

protect and connect logo white

Protect & Connect

exa knowledge hub

Knowledge

More

Knowledge Hub

Knowledge HubTMeducation

Draytek Vulnerability

  • 2 min read

​​A security vulnerability, which affects the DrayTek Vigor range of routers, has been identified. 

The vulnerability (CVE-2022-32548) affects a number of Vigor models that Exa and our customers have deployed in the past few years, specifically the following devices:

  • Vigor 2862 router
  • Vigor 2865 router
  • Vigor 2866 router
  • If you have enabled SSL VPN your device is open to attack
  • If you have enabled remote management of the Vigor, without specifying a management IP range, you are vulnerable to attack. This leaves your device open for any IP to access management settings

On a standard out-of-the-box configuration, or Exa’s default managed configuration, management pages can’t be reached through Wide Area Network (WAN) interfaces. However, this doesn’t protect malicious activity within the Local Area Network (LAN). As such, any Vigor running vulnerable firmware can be exploited within the LAN.

What can I do?

Draytek has released firmware updates to patch the vulnerability, so if you are managing your device internally, we recommend updating your firmware immediately. Before doing the upgrade, take a backup of your current config in case you need it later.

Anyone using SSL VPN should immediately disable this feature to remove access to the web interface from the internet, until a firmware update is applied. Once this update has been applied, customers should be able to switch the SSL VPN on again.

You should also review whether remote access to the device management pages is needed.  If it is, this should always (as best practice) be locked down to a limited number of management IP addresses/ranges.

You don’t need to take any action if we are managing your device, you will be contacted directly.

If you would like us to manage the deployment of firmware upgrades for you, whilst also gaining the security of a replacement router should anything happen, you can get in touch with us about our RFL (Router for Life) service.

For more information regarding vulnerability (CVE-2022-32548) visit the Draytek website.

draytek Vigor 2862 router

Suggested Next Read

Ensuring Robust Security Through Regular Firewall Updates
Read Next

Related Knowledge Hub™ Articles

Ensuring Robust Security Through Regular Firewall Updates
  • 26 April 2024
  • 15 May 2024
  • 2 min read
Read Article
Google’s .zip & .mov TLDs – Blocking phishing URLs
  • 26 May 2023
  • 15 May 2024
  • 11 min read
Read Article
Debugging Latency – Redux
  • 10 November 2022
  • 15 May 2024
  • 11 min read
Read Article

Knowledge HubHome

exa logo white
Twitter Facebook-f Linkedin-in
cyber essentials certified
IWF member
ISPA Testing
ISPA Testing

For further information on our IMS Policy contact:

ISPA Testing
ISPA Testing
cyber essentials certified
ISO 9001 & ISO 27001 certification
IWF member

Exa is a trading name of Exa Networks Limited | Registered Company Number: 04922037 | VAT Number: 829 1565 09 | © Copyright Exa Networks Limited 2024 | All Rights Reserved

Exa is a trading name of Exa Networks Limited
Registered Company Number: 04922037
VAT Number: 829 1565 09

© Copyright Exa Networks Limited 2024 | All Rights Reserved

ISPA Testing

The Exa Foundation

Contact us

Sales

Sales

Office hours

Monday: 8:30am – 5pm
Tuesday: 8:30am – 5pm
Wednesday: 8:30am – 5pm
Thursday: 8:30am – 5pm
Friday: 8:30am – 5pm
Saturday: Closed
Sunday: Closed

Technical Support

Contact us

Email: helpdesk@exa.net.uk
Phone: 0345 145 1234

Office hours

Monday: 8am – 6pm
Tuesday: 8am – 6pm
Wednesday: 8am – 6pm
Thursday: 8am – 6pm
Friday: 8am – 6pm
Saturday: 10am – 4pm
Sunday: 10am – 4pm