Lucene search

K
ciscoCiscoCISCO-SA-RV-OVERFLOW-WUNUGV4U
HistoryJan 13, 2021 - 4:00 p.m.

Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Remote Command Execution and Denial of Service Vulnerabilities

2021-01-1316:00:00
tools.cisco.com
102
cisco small business
routers
upnp
web interface
vulnerabilities
remote attacker
arbitrary code
device restart
software updates

EPSS

0.005

Percentile

76.3%

Multiple vulnerabilities in the Universal Plug and Play (UPnP) service and the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow a remote attacker to execute arbitrary code or cause an affected device to restart unexpectedly.

For more information about these vulnerabilities, see the Details [“#details”] section of this advisory.

Cisco has not released software updates that address these vulnerabilities. There are no workarounds that address these vulnerabilities.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-overflow-WUnUgv4U [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-overflow-WUnUgv4U”]

Affected configurations

Vulners
Node
ciscosmall_business_rv_series_router_firmware
VendorProductVersionCPE
ciscosmall_business_rv_series_router_firmware*cpe:2.3:o:cisco:small_business_rv_series_router_firmware:*:*:*:*:*:*:*:*

EPSS

0.005

Percentile

76.3%