Version Vigor2960 fw1.5.1.1RC3 (r8167) Vigor3900 fw1.5.1.1beta_r8167 Vulnerability details There are some command injection vulnerabilities in the mainfunction.cgi file. The details are as follows: 1. in downlaod_ovpn function