Draytek routers get an important security update. New software is available for a number of models, including ours tested years ago (and still in use) Model Vigor 2760 Delight, which dates from 2014.
The vulnerabilities are CVE-2022-32548, which allows code to run on the router, and CVE-2022-0778, which has problems with OpenSSL encryption. All affected router models Draytek has listed the updated firmware version here, you can find the latest firmware version for download here.
So if you own a Draytek router and perhaps haven’t updated it in a while, now is the time! A little tip: the firmware versions come as .all and .rst versions. The .all keeps all your configuration settings, .rst resets everything, so be careful when choosing the right version.
