CNNVD-202508-220 Information

CNNVD ID

CNNVD-202508-220

Related CVE

CVE-2025-44643

• CNNVD Published: 2025-08-04

Description (Chinese)

Draytek AP903等都是中国居易（Draytek）公司的一款无线接入点。 Draytek多款产品存在安全漏洞，该漏洞源于不安全配置，可能导致未经授权控制路由守护进程。以下产品和版本受到影响：Draytek AP903 v1.4.18版本、AP912C v1.4.9版本和AP918R v1.4.9版本。

Description (English)

Draytek AP903 is a wireless access point for the Chinese company Draytek. There is a safety gap in Draytek ’ s multiple products, which stems from unsafe configurations and may lead to unauthorized control of the route-davigation process. The following products and versions were affected: Draytek AP903 v1.4.18, AP912C v1.4.9 and AP918R v1.4.9.

Hazard Level

Medium

Vulnerability Type

其他

Affected Vendor

居易

Published

2025-08-04

Last Modified

2026-02-24

References

http://draytek.com https://www.notion.so/Misconfiguration-in-Draytek-AP903-23a54a1113e780aca7f2d21dbdab9db8 https://access.redhat.com/security/cve/cve-2025-44643