DrayTek Vulnerability Details
To protect your system, we strongly recommend upgrading the firmware to at least from the listed version.These vulnerabilities are listed below.
Vulnerability Details
| CVE Number | Description | CVSS |
| CVE-2025-20631 | Lead to local escalation of privilege with no additional execution privileges needed. | 7.8 |
| CVE-2025-20632 | Lead to local escalation of privilege with no additional execution privileges needed. | 7.8 |
| CVE-2025-20633 | Lead to remote (proximal/adjacent) code execution with no additional execution privileges needed. | 8.8 |
The security updates are released for the following models. No other models are affected. Please click here to download, and upgrade the firmware per model as soon as possible to ensure the security of your system or log a support ticket by emailing [email protected].
Affected Products and Recommended Firmware Versions
| Model | Firmware Version |
| VigorLTE 200n | 3.9.9.3 or later |
| Vigor2620Ln | 3.9.9.3 or later |
| Vigor2135ac / 2135Vac / 2135FVac / 2135ax | 4.4.5.7 or later |
| Vigor2136ax | 5.3.1 or later |
| Vigor2765ac / 2765Vac / 2765ax | 4.4.5.7 or later |
| Vigor2766ac / 2766Vac / 2766ax / 2766Vax | 4.4.5.7 or later |
| Vigor2865ac / 2865Vac / 2865ax / 2865Lac / 2865Lax-5G | 4.4.6.1 or later |
| Vigor2866ac / 2866Vac / 2866ax / 2866Lac | 4.4.6.1 or later |
| Vigor2915ac | 4.4.5.1 or later |
| Vigor2927ac / 2927Vac / 2927ax / 2927Lac / 2927Lax-5G | 4.4.6.1 or later |
| Vigor C410ax | 5.3.1 or later |
| Vigor C510ax | 5.3.1 or later |
| VigorAP 805 | 5.0.4 or later |
| VigorAP 903 | 1.4.18 or later |
| VigorAP 962C | 5.0.4 or later |
| VigorAP 1062C | 5.0.4 or later |