CVE-2025-44643 – Draytek AP Series Insecure Permissions Weak Password Vulnerability

CVE ID : CVE-2025-44643

Published : Aug. 4, 2025, 3:15 p.m. | 21 minutes ago

Description : Certain Draytek products are affected by Insecure Permissions. This affects AP903 v1.4.18 and AP912C v1.4.9 and AP918R v1.4.9. The setting of the secret field in the FreeRadius-related clients.conf configuration file sets a hardcoded weak password, posing a security risk.

Severity: 8.6 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…