DrayTek CVE's being exploited

Welcome Guest.

You haven't logged in yet. If you don't have an account you can register now.

Forums › LAN (ethernet/Wifi/routers/Bluetooth) › DrayTek CVE's being exploited - patch now!

saf

146 posts

Master Geek

ID Verified

Trusted

Vetta Group

Subscriber

#319120 24-Mar-2025 10:53

Just a heads up, ourselves and many other ISPs both in NZ and internationally have started seeing a couple of DrayTek CVE's being exploited over the last ~24 hours.

One of the symptoms of this is the internet connection bouncing up and down, due to the DrayTek encountering a buffer overflow from these exploits.

While I don't have all the detail, general rules apple:
If you're using a DrayTek router, please ensure it's up to date.
If you're using a DrayTek router and your connection is bouncing up and down hinting at being hit by the exploit, reset it, update it, and reconfigure.

More info:

https://www.draytek.com/about/security-advisory/buffer-overflow-vulnerabilities-(cve-2024-51138-cve-2024-51139)

https://www.draytek.com/about/security-advisory/denial-of-service,-information-disclosure,-and-code-execution-vulnerabilities

My views are as unique as a unicorn riding a unicycle. They do not reflect the opinions of my employer, my cat, or the sentient coffee machine in the break room.

drquack32

129 posts

Master Geek

ID Verified

#3356876 24-Mar-2025 12:23

Yeah the punishing thing is I checked this last week. It did not list the 2120s as a compromised model but have two of those that have flaked out. Last firmware is 2019 so only option is to replace

News and reviews »

Bolt Launches in New Zealand
Posted 11-Jun-2025 00:00

Suunto Run Review
Posted 10-Jun-2025 10:44

Freeview Satellite TV Brings HD Viewing to More New Zealanders
Posted 5-Jun-2025 11:50

HP OmniBook Ultra Flip 14-inch Review
Posted 3-Jun-2025 14:40

Flip Phones Are Back as HMD Reimagines an Iconic Style
Posted 30-May-2025 17:06

Hundreds of School Students Receive Laptops Through Spark Partnership With Quadrent's Green Lease
Posted 30-May-2025 16:57

AI Report Reveals Trust Is Key to Unlocking Its Potential in Aotearoa
Posted 30-May-2025 16:55

Galaxy Tab S10 FE Series Brings Intelligent Experiences to the Forefront with Premium, Versatile Design
Posted 30-May-2025 16:14

New OPPO Watch X2 Launches in New Zealand
Posted 29-May-2025 16:08

Synology Premiers a New Lineup of Advanced Data Management Solutions
Posted 29-May-2025 16:04

Dyson Launches Its Slimmest Vaccum Cleaner PencilVac
Posted 29-May-2025 15:50

OPPO Reno13 Pro 5G ReviewÂ
Posted 29-May-2025 15:33

Logitech Introduces New G522 Gaming Headset
Posted 21-May-2025 19:01

LG Announces New Ultragear OLED Range for 2025
Posted 20-May-2025 16:35

Sandisk Raises the Bar With WD_BLACK SN8100 NVME SSD
Posted 20-May-2025 16:29

Geekzone Live »

Try automatic live updates from Geekzone directly in your browser, without refreshing the page, with Geekzone Live now.

Updates »

Are you subscribed to our RSS feed? You can download the latest headlines and summaries from our stories directly to your computer or smartphone by using a feed reader.

RSS feeds: Main feed; Forums feed

Site features: Geekzone BI dashboard; Geekzone Badges; Geekzone Status Page

Affiliate links: Samsung; AliExpress; Wise; Sharesies; Hatch; GoodSync; Backblaze backup

Site Information: Subscribe to Geekzone; Privacy Statement; Forum Usage Guidelines (FUG); Advertising; Trademark and copyright