Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2022-20707
HistoryFeb 10, 2022 - 6:15 p.m.

Authentication flaw

2022-02-1018:15:00
PRIOn knowledge base
www.prio-n.com
4

7.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

8.1 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.082 Low

EPSS

Percentile

94.2%

JSON

Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization protections Fetch and run unsigned software Cause denial of service (DoS) For more information about these vulnerabilities, see the Details section of this advisory.

Related

cve 1
zdi 3
zdt 1
packetstorm 1
metasploit 1
rapid7blog 1
nessus 1
threatpost 1
thn 1
cisco 1
cve
cve
CVE-2022-20707
2022-02-10 18:15:00
zdi
zdi
(Pwn2Own) Cisco RV340 JSON RPC file-copy Command Injection Local Privilege Escalation Vulnerability
2022-02-22 00:00:00
(Pwn2Own) Cisco RV340 upload.cgi JSON Command Injection Privilege Escalation Vulnerability
2022-02-22 00:00:00
(Pwn2Own) Cisco RV340 NGINX sessionid Directory Traversal Authentication Bypass Vulnerability
2022-02-22 00:00:00
zdt
zdt
Cisco RV Series Authentication Bypass / Command Injection Exploit
2023-02-14 00:00:00
packetstorm
packetstorm
Cisco RV Series Authentication Bypass / Command Injection
2023-02-14 00:00:00
metasploit
metasploit
Cisco RV Series Authentication Bypass and Command Injection
2023-02-05 15:15:16
rapid7blog
rapid7blog
Metasploit Wrap-Up
2023-02-17 21:17:16
nessus
nessus
Cisco Small Business RV Series Routers Multiple Vulnerabilities (cisco-sa-smb-mult-vuln-KA9PK6D)
2022-02-03 00:00:00
threatpost
threatpost
Critical Cisco Bugs Open VPN Routers to Cyberattacks
2022-02-03 20:15:54
thn
thn
Critical Flaws Discovered in Cisco Small Business RV Series Routers
2022-02-03 14:05:00
cisco
cisco
Cisco Small Business RV Series Routers Vulnerabilities
2022-02-02 16:00:00

7.3 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

LOW

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

8.1 High

AI Score

Confidence

High

7.5 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

PARTIAL

AV:N/AC:L/Au:N/C:P/I:P/A:P

0.082 Low

EPSS

Percentile

94.2%

JSON
Related for PRION:CVE-2022-20707
cve1zdi3zdt1packetstorm1metasploit1rapid7blog1nessus1threatpost1thn1cisco1