Weekly Update 27 March 2025
Latest Knowledge Base Articles
DrayTek Routers Rebooting- How to solve this issue
Over the weekend, we received numerous reports from customers experiencing issues with their routers rebooting. The issue has been identified as a targeted Denial-of-Service attack on SSL services on DrayTek routers.
DrayTek released a security advisory to inform users to update the router firmware to the latest version:
This article outlines the steps to follow to prevent the router from rebooting.
The steps involve first disconnecting the WAN connection to stop the rebooting issue.
Then, follow these steps:
· - Disable any SSL services (VPN, remote access).
· - Disable remote management.
· - Download and install the latest firmware, which includes the security fix.
Improvements
· - Improve Web GUI Security
· - Improve the Wi-Fi Driver Security (CVE-2025-20633)
· - Change the text of Alternative Subject Name to Subject Alternative Name in VPN and Remote Access >> IPsec General Setup
· - Fixed: RADIUS Request Interval not working
· - Fixed: VPN Matcher not working
Click here to download
the firmware.
Improvements
· - Improve Web GUI Security
· - Improve the Wi-Fi Driver Security (CVE-2025-20633)
· - Change the text of Alternative Subject Name to Subject Alternative Name in VPN and Remote Access >> IPsec General Setup
· - Fixed: RADIUS Request Interval not working
· - Fixed: VPN Matcher not working
Click here to download the firmware.
Improvements
· - Support for the transmission of multiple fragmented packets.
· - Improve the Wi-Fi Driver Security (CVE-2025-20631, CVE-2025-20632 and CVE-2025-20633).
Click here
to download the firmware.
Improvements
· - Support for the transmission of multiple fragmented packets.
· - Improve the Wi-Fi Driver Security (CVE-2025-20631, CVE-2025-20632 and CVE-2025-20633).
Click here
to download the firmware.
Improvements
· - Support for the transmission of multiple fragmented packets.
· - Improve the Wi-Fi Driver Security (CVE-2025-20631, CVE-2025-20632 and CVE-2025-20633).
Click here
to download the firmware.
New Features
· - Support EasyVPN
· - Support IP reputation as the firewall filter
· - Support Single-arm VPN (one-way VPN)
· - Support VPN to WAN direction for the Content Filter
· - Support WAN Auto Hunt for connecting to Ethernet WAN
· - Support “.xml/.def” file and provisioning with ACS server
Improvements
· - Support to maintain the domain whitelist for the hotspot.
· - Add the function to bind the physical interface for the TR-069 client.
· - Support for downloading images used for hotspot logos using HTML.
· - Improve the Wi-Fi Driver Security (CVE-2025-20631, CVE-2025-20632 and CVE-2025-20633)
For a complete list of improvements, refer to the release notes in the download link below.
Click here to download the firmware.
Improvement
· - Improve Wi-Fi Driver Security (CVE-2025-20631, CVE-2025-20632 and CVE-2025-20633)
Click here to download the firmware.
Vigor2927 / 2927 LTE / 2927L-5G V4.4.6.1
Improvement
· - Improve Wi-Fi Driver Security (CVE-2025-20631, CVE-2025-20632 and CVE-2025-20633)
Click here to download the firmware.
Latest Software
Smart VPN Client Windows Version 5.7.0
New Features
· - Support EasyVPN (for Vigor2136ax)
· - Add Portuguese translation for the 2FA authentication window
Improvement
· - Re-define the authority of the system administrator and the general operator. Any Windows user with standard privileges can import/export the configuration via file selection
Click here to download the software.
Calendar Events from DrayTek HQ
DrayTek HQ frequently sends notifications about system updates, outages, security alerts, and firmware releases.
Click here for the latest news from DrayTek HQ.
To subscribe to our regular news updates, click “Subscribe” on this page or log into your i-helpdesk account and enable the “Subscribe” option.
Related Articles
Weekly Update 24 March 2021
MyVigor Security Update Recently the MyVigor server has been upgraded to a new system architecture which includes security enhancements. As a result, new firmware will be required for DrayTek devices to take advantage of the new security ...Weekly Update 19 March 2020
Upcoming Webinar Free Webinar – Network Management and Monitoring of DrayTek Devices Tuesday 31 March 2020 10:00AM – 10:30 AM (AEST) You are invited to attend our next webinar presentation where we give an overview of the different ways to manage ...Weekly Update 9 March 2020
Upcoming Webinar DrayTek VigorConnect– Features and Benefits Tuesday 17th March 2020, 10:00am Duration: 30 minutes You are invited to attend our next webinar: DrayTek VigorConnect - Features and Benefits. This webinar introduces the latest network ...Weekly Update 8 March 2023
Security Advisory 1. Hacking campaign called 'Hiatus' targets DrayTek Vigor router models 2960 and 3900 We have become aware of a hacking campaign called 'Hiatus' targeting DrayTek Vigor router models 2960 and 3900 to steal data from victims and ...Weekly Update 26 March 2020
Upcoming Webinar Free Webinar – Network Management and Monitoring of DrayTek Devices Tuesday 31 March 2020 10:00AM – 10:30 AM (AEST) You are invited to attend our next webinar presentation where we give an overview of the different ways to manage ...