A vulnerability was found in Draytek Vigor 3900 1.5.1.3. It has been classified as critical. Affected is the function
doGRETunnel
of the file mainfunction.cgi. The manipulation leads to command injection.
This vulnerability is traded as CVE-2024-51298. It is possible to launch the attack remotely. There is no exploit available.