CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
AI Score
Confidence
High
EPSS
Percentile
61.2%
The web management interface on the Cisco RVS4000 Gigabit Security Router with software 1.x before 1.3.3.4 and 2.x before 2.0.2.7, and the WRVS4400N Gigabit Security Router with software before 2.0.2.1, allows remote authenticated users to execute arbitrary commands via the (1) ping test parameter or (2) traceroute test parameter, aka Bug ID CSCtn23871.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | rvs4000 | 1 | cpe:2.3:h:cisco:rvs4000:1:*:*:*:*:*:*:* |
cisco | rvs4000 | 2 | cpe:2.3:h:cisco:rvs4000:2:*:*:*:*:*:*:* |
cisco | rvs4000_software | 1.3.0.5 | cpe:2.3:a:cisco:rvs4000_software:1.3.0.5:*:*:*:*:*:*:* |
cisco | rvs4000_software | 1.3.1.0 | cpe:2.3:a:cisco:rvs4000_software:1.3.1.0:*:*:*:*:*:*:* |
cisco | rvs4000_software | 1.3.2.0 | cpe:2.3:a:cisco:rvs4000_software:1.3.2.0:*:*:*:*:*:*:* |
cisco | rvs4000_software | 2.0.0.3 | cpe:2.3:a:cisco:rvs4000_software:2.0.0.3:*:*:*:*:*:*:* |
cisco | wrvs4400n | 1.0 | cpe:2.3:h:cisco:wrvs4400n:1.0:*:*:*:*:*:*:* |
cisco | wrvs4400n | 1.1 | cpe:2.3:h:cisco:wrvs4400n:1.1:*:*:*:*:*:*:* |
cisco | wrvs4400n | 2 | cpe:2.3:h:cisco:wrvs4400n:2:*:*:*:*:*:*:* |
cisco | wrvs4400n_software | 1.3.0.5 | cpe:2.3:a:cisco:wrvs4400n_software:1.3.0.5:*:*:*:*:*:*:* |