Design/Logic Flaw

2020-06-1803:15:00

PRIOn knowledge base

www.prio-n.com

7.3 High

AI Score

Confidence

High

0.007 Low

EPSS

Percentile

80.0%

JSON

Multiple vulnerabilities in the web-based management interface of Cisco RV110W, RV130, RV130W, and RV215W Series Routers could allow an authenticated, remote attacker with administrative privileges to execute arbitrary commands. For more information about these vulnerabilities, see the Details section of this advisory.

CPENameOperatorVersion
rv110w_firmwarele1.2.2.5
rv130_firmwarele1.0.3.54
rv130w_firmwarele1.0.3.54
rv215w_firmwarele1.3.1.5

Name	Operator	Version
rv110w_firmware	le	1.2.2.5
rv130_firmware	le	1.0.3.54
rv130w_firmware	le	1.0.3.54
rv215w_firmware	le	1.3.1.5

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-routers-injection-tWC7krKQ