← Back to CVE List
CVE-2024-41584
Published:
2024-10-03T19:15Z
Last Modified:
2025-04-10T18:15Z
Source:
MITRE CVE List
License:
MITRE-CVE-TOS
DrayTek Vigor3910 devices through 4.3.2.6 are vulnerable to reflected XSS by authenticated users, caused by missing validation of the sFormAuthStr parameter. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt