Authorization

2019-11-2604:15:00

PRIOn knowledge base

www.prio-n.com

5.2 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

38.7%

JSON

A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an unauthenticated, remote attacker to view information displayed in the web-based management interface. The vulnerability is due to improper authorization of HTTP requests. An attacker could exploit this vulnerability by sending crafted HTTP requests to the web-based management interface of an affected device. A successful exploit could allow the attacker to view information displayed in the web-based management interface without authentication.

CPENameOperatorVersion
rv016_multi-wan_vpn_firmwarelt4.2.3.10
rv042_dual_wan_vpn_firmwarelt4.2.3.10
rv042g_dual_gigabit_wan_vpn_firmwarelt4.2.3.10
rv082_dual_wan_vpn_firmwarelt4.2.3.10

Name	Operator	Version
rv016_multi-wan_vpn_firmware	lt	4.2.3.10
rv042_dual_wan_vpn_firmware	lt	4.2.3.10
rv042g_dual_gigabit_wan_vpn_firmware	lt	4.2.3.10
rv082_dual_wan_vpn_firmware	lt	4.2.3.10