DrayTek Vulnerability Issue (Third-Party)
Date: 24th March 2025 | 1:30 PM
We are aware of a third-party vulnerability affecting broadband services across the UK and believe this is linked to firmware issues on DrayTek routers. Your services may not currently be impacted, but to minimise the risk of downtime, please review the advice below. Whilst not an Onecom issue, our team is on hand to assist you in getting things back up and running smoothly.
What's Happening?
There’s a known vulnerability believed to be affecting certain DrayTek routers due to outdated firmware, which can lead to connection dropouts. Updating your router’s firmware is expected to fix the problem.
What You Need to Do
1. Check Your Firmware Version:
To see if your router needs an update:
- Open your browser and type 192.168.1.1 in the address bar
- Log in to your router. (Login credentials can be found under the router).
- Go to System Maintenance > System Status to find your firmware version.
2. Compare Your Firmware Version
Look at the table below to see if your firmware is up to date. If your version is lower than listed, you need to update your router.
Model |
Firmware Version |
Vigor165 |
4.2.7 or later |
Vigor166 |
4.2.7 or later |
Vigor2620 LTE |
3.9.8.9 or later |
VigorLTE 200n |
3.9.9.1 or later |
Vigor2133 |
3.9.9.2 or later |
Vigor2135 |
4.4.5.5 or later |
Vigor2620 LTE |
3.9.9.1 or later |
Vigor2762 |
3.9.9.2 or later |
Vigor2765 |
4.4.5.5 or later |
Vigor2766 |
4.4.5.5 or later |
Vigor2832 |
3.9.9.2 or later |
Vigor2860 / 2860 LTE |
3.9.8.3 or later |
Vigor2862 / 2862 LTE |
3.9.9.8 or later |
Vigor2865 / 2865 LTE / 2865L-5G |
4.4.5.8 or later |
Vigor2866 / 2866 LTE |
4.4.5.8 or later |
Vigor2925 / 2925 LTE |
3.9.8.3 or later |
Vigor2926 / 2926 LTE |
3.9.9.8 or later |
Vigor2927 / 2927 LTE / 2927L-5G |
4.4.5.8 or later |
Vigor2962 |
4.3.2.9 or later |
Vigor3910 |
4.3.2.9 or later |
Vigor3912 |
4.3.6.2 or later |
3. Download and Install the Latest Firmware
You can get the latest firmware for your router directly from DrayTek. Visit Draytek's official Firmware Download Page to locate updates for your model. The firmware will be downloaded as a .zip file, which contains two types of files:
- ALL file – Use this file to update your router with the latest firmware.
- RST file – Do not use this file. It will reset your router to factory settings, erasing your current configuration, including broadband login details, and may render the router unusable.
Please save the ALL file to your PC/Desktop, then follow these steps:
- Open your browser and type 192.168.1.1 in the address bar (please ensure you are connected to the router via Wi-Fi or Ethernet cable).
- Log in to your router. (Login credentials can be found under the router).
- Once logged in, navigate to System Maintenance, then Firmware Upgrade.
- Browse to the firmware file stored on your computer and click "Upgrade".
Thank you for your patience – we’re committed to helping you stay connected. We’ll continue to monitor the situation and share updates as needed.