EPSS
Percentile
48.1%
SQL injection vulnerability in the web-based management interface on Cisco RV220W devices allows remote attackers to execute arbitrary SQL commands via a crafted header in an HTTP request, aka Bug ID CSCuv29574.
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160127-rv220
www.securitytracker.com/id/1034830