Lucene search

CVE-2021-1167

🗓️ 13 Jan 2021 22:16:15Reported by ciscoType

cve🔗 web.nvd.nist.gov📰️ 2 Media mentions👁 88 Views🌐 WEB

CVE-2021-1167: Multiple vulnerabilities in Cisco Small Business Router

Reporter	Title	Published	Views	Family All 10
Exploit DB	Cisco RV110W 1.2.1.7 - 'vpn_account' Denial of Service (PoC)	14 Jan 202100:00	–	exploitdb
Packet Storm	Cisco RV110W 1.2.1.7 Denial Of Service	14 Jan 202100:00	–	packetstorm
Prion	Input validation	13 Jan 202122:15	–	prion
Check Point Advisories	Cisco Small Business Routers Denial Of Service (CVE-2021-1167)	22 Feb 202100:00	–	checkpoint_advisories
NVD	CVE-2021-1167	13 Jan 202122:15	–	nvd
CNVD	Cisco RV110W/RV130/RV130W/RV215W Remote Command Execution and Denial of Service Vulnerability (CNVD-2021-41220)	14 Jan 202100:00	–	cnvd
Vulnrichment	CVE-2021-1167 Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Management Interface Remote Command Execution and Denial of Service Vulnerabilities	13 Jan 202121:36	–	vulnrichment
Cvelist	CVE-2021-1167 Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Management Interface Remote Command Execution and Denial of Service Vulnerabilities	13 Jan 202121:36	–	cvelist
0day.today	Cisco RV110W 1.2.1.7 - (vpn_account) Denial of Service Exploit	14 Jan 202100:00	–	zdt
Cisco	Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Remote Command Execution and Denial of Service Vulnerabilities	13 Jan 202116:00	–	cisco

Nvd

Node

cisco rv110w_firmwareMatch1.2.1.7

cisco rv110w_firmwareMatch1.2.2.8

cisco rv110w_firmwareMatch1.3.1.7

AND

cisco rv110wMatch-

Node

cisco rv130_vpn_router_firmwareMatch1.2.2.8

cisco rv130_vpn_router_firmwareMatch1.3.1.7

AND

cisco rv130_vpn_routerMatch-

Node

cisco rv130w_firmwareMatch1.2.2.8

cisco rv130w_firmwareMatch1.3.1.7

AND

cisco rv130wMatch-

Node

cisco rv215w_wireless-n_vpn_router_firmwareMatch1.2.2.8

cisco rv215w_wireless-n_vpn_router_firmwareMatch1.3.1.7

AND

cisco rv215w_wireless-n_vpn_routerMatch-

Node

cisco application_extension_platformMatch1.0.3.55

[
  {
    "product": "Cisco Small Business RV Series Router Firmware",
    "vendor": "Cisco",
    "versions": [
      {
        "status": "affected",
        "version": "n/a"
      }
    ]
  }
]

Source	Link
packetstormsecurity	www.packetstormsecurity.com/files/160953/Cisco-RV110W-1.2.1.7-Denial-Of-Service.html
tools	www.tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-overflow-WUnUgv4U

Parameter	Position	Path	Description	CWE
vpn_account	request body	/apply.cgi;session_id=	CVE-2021-1167 Stack Overflow through vpn_account parameter leading to DoS.	CWE-787, CWE-121

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

13 Jan 2021 22:15Current

7.3High risk

Vulners AI Score7.3

CVSS29

CVSS37.2

EPSS0.06073

SSVC