The vulnerability of the web interfaces of Cisco Small Business RV320 and Cisco Small Business RV325 microprogramming software-enabled routers allows attackers to execute cross-site scripting attacks.

🗓️ 12 Apr 2019 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

The web interfaces of Cisco RV320 and RV325 routers have cross-site scripting due to gaps.

Reporter	Title	Published	Views	Family All 10
Tenable Nessus	Cisco Small Business RV320 and RV325 Routers Multiple Vulnerabilities	15 Apr 201900:00	–	nessus
Cisco	Cisco Small Business RV320 and RV325 Routers Online Help Reflected Cross-Site Scripting Vulnerability	4 Apr 201914:00	–	cisco
CNVD	Cisco Small Business RV320 and Cisco Small Business RV325 Cross-Site Scripting Vulnerabilities	8 Apr 201900:00	–	cnvd
CVE	CVE-2019-1827	4 Apr 201915:25	–	cve
Cvelist	CVE-2019-1827 Cisco Small Business RV320 and RV325 Routers Online Help Reflected Cross-Site Scripting Vulnerability	4 Apr 201915:25	–	cvelist
EUVD	EUVD-2019-10384	7 Oct 202500:30	–	euvd
NVD	CVE-2019-1827	4 Apr 201916:29	–	nvd
Prion	Cross site scripting	4 Apr 201916:29	–	prion
ThreatPost	Cisco Finally Patches Router Bugs As New Unpatched Flaws Surface	5 Apr 201920:29	–	threatpost
Vulnrichment	CVE-2019-1827 Cisco Small Business RV320 and RV325 Routers Online Help Reflected Cross-Site Scripting Vulnerability	4 Apr 201915:25	–	vulnrichment

Vulners

Node

cisco_systems cisco_small_business_rv320Range<1.4.2.22

OR

cisco_systems cisco_small_business_rv325Range<1.4.2.22

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190404-rv-xss
nvd	www.nvd.nist.gov/vuln/detail/CVE-2019-1827
web	www.web.nvd.nist.gov/view/vuln/detail

23 Mar 2021 00:00Current

6.4Medium risk

Vulners AI Score6.4

CVSS 25.5

CVSS 36.1

EPSS0.00247

Cisco routers small business web interfaces cross site scripting remote exploitation insufficient protection gaps in protection