CVE-2018-0127
published 2018-02-08CVE-2018-0127: A vulnerability in the web interface of Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco RV134W VDSL2 Wireless-AC VPN Routers could allow an…
PriorityP192critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
ITWEXPLOITVulnCheck KEV
Exploited in the wild
EPSS
77.75%
99.5th percentile
A vulnerability in the web interface of Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco RV134W VDSL2 Wireless-AC VPN Routers could allow an unauthenticated, remote attacker to view configuration parameters for an affected device, which could lead to the disclosure of confidential information. The vulnerability is due to the absence of user authentication requirements for certain pages that are part of the web interface and contain confidential information for an affected device. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device and examining the HTTP response to the request. A successful exploit could allow the attacker to view configuration parameters, including the administrator password, for the affected device. Cisco Bug IDs: CSCvg92739, CSCvh60172.
Affected
5 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | rv132w_and_rv134w_wireless_vpn_routers_unauthenticated | — | — |
| cisco | rv132w_firmware | — | — |
| cisco | rv132w_firmware | — | — |
| cisco | rv134w_firmware | — | — |
| cisco | rv134w_firmware | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Send an unauthenticated HTTP GET request to /dumpmdm.cmd on the target device; a vulnerable response will return HTTP 200 and contain all four strings: 'Dump', 'MDM', 'cisco', and 'admin' in the response body. ↗
- →The vulnerability is exploitable with no authentication; an attacker only needs to craft an HTTP GET request to the affected endpoint and inspect the response for configuration parameters including the administrator password. ↗
- ·The vulnerability affects Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco RV134W VDSL2 Wireless-AC VPN Routers. The unauthenticated disclosure endpoint is present on certain pages of the web interface that require no user authentication. ↗
- ·There are no workarounds available for this vulnerability; the only remediation is applying the latest firmware update from Cisco. ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
vulncheck9.8CRITICAL
vendor_cisco5.9MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-3368-gx38-c6qj: A vulnerability in the web interface of Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco RV134W VDSL2 Wireless-AC VPN Routers could allow an unaut
ghsa_unreviewed·2022-05-13
CVE-2018-0127 [CRITICAL] CWE-306 GHSA-3368-gx38-c6qj: A vulnerability in the web interface of Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco RV134W VDSL2 Wireless-AC VPN Routers could allow an unaut
A vulnerability in the web interface of Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco RV134W VDSL2 Wireless-AC VPN Routers could allow an unauthenticated, remote attacker to view configuration parameters for an affected device, which could lead to the disclosure of confidential information. The vulnerability is due to the absence of user authentication requirements for certain pages that are part of the web interface and contain confidential information for an affected device. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device and examining the HTTP response to the request. A successful exploit could allow the attacker to view configuration parameters, including the administrator password, for the affected device. Cisco Bug IDs: CSCv
VulnCheck
Cisco RV Series Routers Exposure of Sensitive Information to an Unauthorized Actor
vulncheck·2018·CVSS 9.8
CVE-2018-0127 [CRITICAL] Cisco RV Series Routers Exposure of Sensitive Information to an Unauthorized Actor
Cisco RV Series Routers Exposure of Sensitive Information to an Unauthorized Actor
A vulnerability in the web interface of Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco RV134W VDSL2 Wireless-AC VPN Routers could allow an unauthenticated, remote attacker to view configuration parameters for an affected device, which could lead to the disclosure of confidential information. The vulnerability is due to the absence of user authentication requirements for certain pages that are part of the web interface and contain confidential information for an affected device. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device and examining the HTTP response to the request. A successful exploit could allow the attacker to view configuration parameters
Cisco
Cisco RV132W and RV134W Wireless VPN Routers Unauthenticated Information Disclosure Vulnerability
vendor_cisco·2018-02-08·CVSS 5.9
CVE-2018-0127 [MEDIUM] CWE-200 Cisco RV132W and RV134W Wireless VPN Routers Unauthenticated Information Disclosure Vulnerability
Cisco RV132W and RV134W Wireless VPN Routers Unauthenticated Information Disclosure Vulnerability
A vulnerability in the web interface of Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco RV134W VDSL2 Wireless-AC VPN Routers could allow an unauthenticated, remote attacker to view configuration parameters for an affected device, which could lead to the disclosure of confidential information.
The vulnerability is due to the absence of user authentication requirements for certain pages that are part of the web interface and contain confidential information for an affected device. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device and examining the HTTP response to the request. A successful exploit could allow the attacker to view configur
Cisco
Cisco RV132W and RV134W Wireless VPN Routers Unauthenticated Information Disclosure Vulnerability
vendor_cisco·CVSS 3.0
CVE-2018-0127 Cisco RV132W and RV134W Wireless VPN Routers Unauthenticated Information Disclosure Vulnerability
CVE-2018-0127: Cisco RV132W and RV134W Wireless VPN Routers Unauthenticated Information Disclosure Vulnerability
A vulnerability in the web interface of Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco RV134W VDSL2 Wireless-AC VPN Routers could allow an unauthenticated, remote attacker to view configuration parameters for an affected device, which could lead to the disclosure of confidential information. The vulnerability is due to the absence of user authentication requirements for certain pages that are part of the web interface and contain confidential information for an affected device. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device and examining the HTTP response to the request. A successful exploit could allow the attacker to
No detection rules found.
Nuclei
Cisco RV132W/RV134W Router - Information Disclosure
nuclei·CVSS 9.8
CVE-2018-0127 [CRITICAL] Cisco RV132W/RV134W Router - Information Disclosure
Cisco RV132W/RV134W Router - Information Disclosure
Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco RV134W VDSL2 Wireless-AC VPN Routers could allow an unauthenticated, remote attacker to view configuration parameters for an affected device via the web interface, which could lead to the disclosure of confidential information.
Template:
id: CVE-2018-0127
info:
name: Cisco RV132W/RV134W Router - Information Disclosure
author: jrolf
severity: critical
description: Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco RV134W VDSL2 Wireless-AC VPN Routers could allow an unauthenticated, remote attacker to view configuration parameters for an affected device via the web interface, which could lead to the disclosure of confidential information.
impact: |
An attacker can exploit this vulne
http://www.securityfocus.com/bid/102969http://www.securitytracker.com/id/1040345https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-rv13x_2http://www.securityfocus.com/bid/102969http://www.securitytracker.com/id/1040345https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180207-rv13x_2
2018-02-08
Published
Exploited in the wild