The vulnerability in the web interface for managing microprogrammed software routers of Cisco Small Business RV110W, RV130, RV130W, and RV215W allows a perpetrator to execute arbitrary commands or cause service failures.

🗓️ 12 Sep 2022 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType

bdu_fstec

bdu_fstec🔗 bdu.fstec.ru👁 1 Views

Cisco RV web interface vulnerability enables remote command execution or denial of service via unchecked input buffers.

Reporter	Title	Published	Views	Family All 10
ATTACKERKB	CVE-2022-20888	20 Jul 202216:00	–	attackerkb
Circl	CVE-2022-20888	21 Jul 202218:21	–	circl
Tenable Nessus	Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Multiple Vulnerabilities (cisco-sa-sb-rv-rce-overflow-ygHByAK)	22 Jul 202200:00	–	nessus
CNNVD	Cisco Small Business 操作系统命令注入漏洞	21 Jul 202200:00	–	cnnvd
CVE	CVE-2022-20888	21 Jul 202203:53	–	cve
Cvelist	CVE-2022-20888 Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Remote Command Execution and Denial of Service Vulnerabilities	21 Jul 202203:53	–	cvelist
EUVD	EUVD-2022-26138	3 Oct 202520:07	–	euvd
NVD	CVE-2022-20888	21 Jul 202214:15	–	nvd
Prion	Input validation	21 Jul 202214:15	–	prion
Vulnrichment	CVE-2022-20888 Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Remote Command Execution and Denial of Service Vulnerabilities	21 Jul 202203:53	–	vulnrichment

Source	Link
nvd	www.nvd.nist.gov/vuln/detail/CVE-2022-20888
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-rv-rce-overflow-ygHByAK
cybersecurity-help	www.cybersecurity-help.cz/vdb/SB2022072215
web	www.web.nvd.nist.gov/view/vuln/detail

12 Sep 2022 00:00Current

7.5High risk

Vulners AI Score7.5

CVSS 34.7

CVSS 26.5

EPSS0.00476

Small Business Router RV series vulnerability Remote command execution Denial of service Unchecked input buffers Incoming requests