Networking equipment manufacturer DrayTek has issued a security advisory regarding a vulnerability (CVE-2025-10547) affecting several Vigor router models. A malicious user could exploit these vulnerabilities to remotely execute code on a targeted system and bypass security restrictions.

DrayTek has released patches to its products to address the vulnerability and has addressed the vulnerability in the firmware versions of the routers listed below:

• Vigor1000B, Vigor2962, Vigor3910 / 3912 -  4.4.3.6
• Vigor2135, Vigor2763, 2765 / 2766, Vigor2865 / 2866, Vigor2927 -  4.5.1
• Vigor2915 -  4.4.6.1
• Vigor2862 / 2926 -  3.9.9.12
• Vigor2952 / 2952P, Vigor3220 -  3.9.8.8
• Vigor2860 / 2925 -  3.9.8.6
• Vigor2133 / 2762/2832 -  3.9.9.4
• Vigor2620 -  3.9.9.5
• VigorLTE 200n -  3.9.9.5

Source: draytek.com