Our WLAN chipset provider has released security patches affecting a wide range of chipset families commonly used in devices such as smartphones, tablets, smart speakers, wireless access points, and wireless routers. Since several DrayTek products incorporate these chipset families, we have promptly issued firmware updates to incorporate the updated WLAN driver across the impacted models.
Although we are not aware of any reports of these vulnerabilities being exploited in the wild, we strongly recommend upgrading to the firmware versions listed below. If upgrading is not immediately possible, consider disabling WLAN functionality or isolating the device from the rest of the network as a temporary precaution.
| CVE Number | Description | CVSS |
|---|---|---|
| CVE-2025-20710 | Integer overflow in wlan | 8.8 |
| CVE-2025-20711 | Specified type in wlan | 8.8 |
| CVE-2025-20715 | Out-of-bounds write in wlan | 7.8 |
| CVE-2025-20716 | Out-of-bounds write in wlan | 7.8 |
| CVE-2025-20718 | Stack overflow in wlan | 7.8 |
| CVE-2025-20719 | Stack overflow in wlan | 8.8 |
| CVE-2025-20720 | Heap overflow in wlan | 8.8 |
| CVE-2025-20724 | Out-of-bounds read in wlan | 5.5 |
| CVE-2025-20729 | Heap overflow in wlan | 4.2 |
| CVE-2025-20731 | Heap overflow in wlan | 5.3 |
| CVE-2025-20732 | Stack overflow in wlan | 5.3 |
| CVE-2025-20733 | Heap overflow in wlan | 7.8 |
| CVE-2025-20734 | Heap overflow in wlan | 5.3 |
| CVE-2025-20735 | Heap overflow in wlan | 7.8 |
| CVE-2025-20736 | Stack overflow in wlan | 6.7 |
| CVE-2025-20737 | Stack overflow in wlan | 7.8 |
| CVE-2025-20738 | Stack overflow in wlan | 6.7 |
| CVE-2025-20739 | Stack overflow in wlan | 6.7 |
The firmware updates are released for the following models. No other models are affected. Please to download and upgrade the firmware for your specific model as soon as possible to ensure your system remains up to date.
| Model | Fixed Firmware Version |
|---|---|
| Vigor C410ax | 5.3.5 |
| Vigor C510ax | 5.3.5 |
| Vigor2133n / 2762n | 3.9.9.5 |
| Vigor2135ac / 2135Vac / 2135FVac | 4.5.2 |
| Vigor2136ax | 5.3.5 |
| Vigor2620Ln | 3.9.9.6 |
| Vigor2763ac | 4.5.2 |
| Vigor2765ac / 2765Vac | 4.5.2 |
| Vigor2766ac / 2766Vac | 4.5.2 |
| Vigor2865ac / 2865Vac / 2865Lac | 4.5.2 |
| Vigor2866ac / 2866Vac / 2866Lac | 4.5.2 |
| Vigor2912n | 3.8.18 |
| Vigor2915ac | 4.4.6.2 |
| Vigor2927ac / 2927Vac / 2927Lac | 4.5.1.1 |
| VigorAP 903 | 1.4.20 |
If you have any security-related queries, please reach out to us via the contact form to connect with our technical team.