The vulnerability in the web interface for managing microprogrammed software routers of Cisco Small Business RV110W, Cisco Small Business RV130, Cisco Small Business RV130W, and Cisco Small Business RV215W allows a attacker to execute arbitrary code.

🗓️ 21 Jul 2020 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

Web interface vulnerability in Cisco Small Business routers RV110W, RV130, RV130W, and RV215W enables arbitrary code execution due to insufficient input verification.

Reporter	Title	Published	Views	Family All 9
Cisco	Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Management Interface Remote Command Execution Vulnerability	15 Jul 202016:00	–	cisco
Tenable Nessus	Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Management Interface Remote Command Execution (cisco-sa-rv-rce-AQKREqp)	18 Aug 202000:00	–	nessus
CVE	CVE-2020-3323	16 Jul 202017:20	–	cve
Cvelist	CVE-2020-3323 Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Management Interface Remote Command Execution Vulnerability	16 Jul 202017:20	–	cvelist
EUVD	EUVD-2020-24594	7 Oct 202500:30	–	euvd
NVD	CVE-2020-3323	16 Jul 202018:15	–	nvd
OSV	CVE-2020-3323	16 Jul 202018:15	–	osv
Prion	Input validation	16 Jul 202018:15	–	prion
Vulnrichment	CVE-2020-3323 Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Management Interface Remote Command Execution Vulnerability	16 Jul 202017:20	–	vulnrichment

Vulners

Node

cisco_systems cisco_rv215wRange<1.3.1.7

cisco_systems rv110w_wireless-n_vpnRange<1.2.2.8

cisco_systems cisco_rv130Range<1.0.3.54

cisco_systems cisco_rv130wRange<1.0.3.54

Source	Link
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-rce-AQKREqp
nvd	www.nvd.nist.gov/vuln/detail/CVE-2020-3323
web	www.web.nvd.nist.gov/view/vuln/detail

21 Jul 2020 00:00Current

8.2High risk

Vulners AI Score8.2

CVSS 39.8

CVSS 210

EPSS0.02842