Lucene search
K

416 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-24540

Malware in sbrugna...

9CVSS7AI score0.02591EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-24539

Malware in sbrugna...

9CVSS7AI score0.02591EPSS
Exploits0References2
VulnCheck KEV
VulnCheck KEV
added 2025/02/25 12:0 a.m.4 views

VulnCheck KEV: CVE-2023-20118

Multiple Cisco Small Business RV Series Routers contains a command injection vulnerability in the web-based management interface. Successful exploitation could allow an authenticated, remote attacker to gain root-level privileges and access unauthorized data...

7.2CVSS7.3AI score0.53827EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/11/18 4:2 p.m.33 views

CVE-2020-3431 Cisco Small Business RV Series Routers Cross-Site Scripting Vulnerability

A vulnerability in the web-based management interface of Cisco Small Business RV042 Dual WAN VPN Routers and Cisco Small Business RV042G Dual Gigabit WAN VPN Routers could allow an unauthenticated, remote attacker to conduct a cross-site scripting XSS attack against a user of the web-based...

6.1CVSS0.00432EPSS
Exploits0References1
OSV
OSV
added 2024/10/02 5:15 p.m.2 views

CVE-2024-20524

A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an unexpected reload of an affected device, resulting in a denial of service DoS condition. To exploit...

6.8CVSS5.8AI score0.00479EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2023/04/05 11:0 p.m.2 views

CVE-2023-20146

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an unauthenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. These vulnerabilities are due t...

6.1CVSS6.6AI score0.00433EPSS
Exploits0References2
NVD
NVD
added 2023/04/05 7:15 p.m.28 views

CVE-2023-20150

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an unauthenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. These vulnerabilities are due t...

6.1CVSS6.1AI score0.00433EPSS
Exploits0References1
NVD
NVD
added 2023/04/05 7:15 p.m.33 views

CVE-2023-20148

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an unauthenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. These vulnerabilities are due t...

6.1CVSS6.1AI score0.00433EPSS
Exploits0References1
Prion
Prion
added 2023/04/05 7:15 p.m.15 views

Cross site scripting

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an unauthenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. These vulnerabilities are due t...

5.8CVSS6AI score0.00433EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2023/04/05 12:0 a.m.5 views

PT-2023-2156 · Cisco · Cisco Small Business Rv082 +5

Name of the Vulnerable Software and Affected Versions: Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers affected versions not specified Description: The issue exists due to insufficient input validation by the web-based management interface, allowing an unauthenticated,...

6.4CVSS6.1AI score0.00433EPSS
Exploits0References4
Cvelist
Cvelist
added 2023/04/05 12:0 a.m.30 views

CVE-2023-20149 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an unauthenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. These vulnerabilities are due t...

6.1CVSS6.2AI score0.00433EPSS
Exploits0References1
CVE
CVE
added 2023/04/05 12:0 a.m.59 views

CVE-2023-20145

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers expose web‑based management interface XSS vulnerabilities due to insufficient input validation. An unauthenticated, remote attacker could lure a user to a crafted page and execute arbitrary script in the interface context ...

6.1CVSS6.1AI score0.00433EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/04/05 12:0 a.m.53 views

CVE-2023-20144

CVE-2023-20144 affects Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers. The web-based management interface has multiple XSS vulnerabilities due to insufficient input validation. An unauthenticated, remote attacker could send crafted HTTP requests and persuade a user to ...

6.1CVSS6.1AI score0.00433EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/04/05 12:0 a.m.57 views

CVE-2023-20142

Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers are affected by stored XSS in the web-based management interface due to insufficient input validation. An unauthenticated, remote attacker can send crafted HTTP requests and persuade a user to visit pages containing malici...

6.1CVSS6.1AI score0.00433EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2023/04/05 12:0 a.m.11 views

CVE-2023-20145 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an unauthenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. These vulnerabilities are due t...

6.1CVSS6.4AI score0.00433EPSS
Exploits0References1
CVE
CVE
added 2023/04/05 12:0 a.m.62 views

CVE-2023-20147

CVE-2023-20147 concerns multiple XSS vulnerabilities in the web-based management interfaces of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers. Root cause: insufficient input validation in the web interface, enabling an unauthenticated, remote attacker to craft HTTP req...

6.1CVSS6.1AI score0.00433EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2023/04/05 12:0 a.m.27 views

CVE-2023-20150 Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an unauthenticated, remote attacker to conduct cross-site scripting XSS attacks against a user of the interface. These vulnerabilities are due t...

6.1CVSS6.2AI score0.00433EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/04/05 12:0 a.m.4 views

Cisco Small Business 跨站脚本漏洞

Cisco Small Business is a switch from Cisco USA. A security vulnerability exists in the Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325, which stems from insufficient validation of inputs to the web-based management interface...

6.1CVSS6.2AI score0.00433EPSS
Exploits0References3
Rapid7 Blog
Rapid7 Blog
added 2023/02/17 9:17 p.m.107 views

Metasploit Wrap-Up

Cisco RV Series Auth Bypass and Command Injection Thanks to community contributor neterum, Metasploit framework just gained an awesome new module which targets Cisco Small Business RV Series Routers. The module actually exploits two vulnerabilities, an authentication bypass CVE-2022-20705 and a...

7.5CVSS0.8AI score0.86194EPSS
Exploits8
Metasploit
Metasploit
added 2023/02/14 7:49 p.m.284 views

Cisco RV Series Authentication Bypass and Command Injection

This module exploits two vulnerabilities, a session ID directory traversal authentication bypass CVE-2022-20705 and a command injection vulnerability CVE-2022-20707, on Cisco RV160, RV260, RV340, and RV345 Small Business Routers, allowing attackers to execute arbitrary commands with www-data user...

10CVSS9.2AI score0.80031EPSS
Exploits3
Rows per page
Query Builder