cbcvebase.
CVE-2021-1293
published 2021-02-04

CVE-2021-1293: Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV160, RV160W, RV260, RV260P, and RV260W VPN Routers could allow an…

PriorityP272critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
5.42%
91.7th percentile
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV160, RV160W, RV260, RV260P, and RV260W VPN Routers could allow an unauthenticated, remote attacker to execute arbitrary code as the root user on an affected device. These vulnerabilities exist because HTTP requests are not properly validated. An attacker could exploit these vulnerabilities by sending a crafted HTTP request to the web-based management interface of an affected device. A successful exploit could allow the attacker to remotely execute arbitrary code on the device.

Affected

7 ranges
VendorProductVersion rangeFixed in
ciscocisco_small_business_rv_series_router_firmware
ciscorv160_vpn_router_firmware< 1.0.01.021.0.01.02
ciscorv160w_wireless-ac_vpn_router_firmware< 1.0.01.021.0.01.02
ciscorv260_vpn_router_firmware< 1.0.01.021.0.01.02
ciscorv260p_vpn_router_with_poe_firmware< 1.0.01.021.0.01.02
ciscorv260w_wireless-ac_vpn_router_firmware< 1.0.01.021.0.01.02
ciscosmall_business_rv160_rv160w_rv260_rv260p_and_rv260w_vpn_routers

Detection & IOCsextracted from sources · hover to see the quote

  • Exploit vector targets the web-based management interface via crafted HTTP requests; monitor for anomalous or malformed HTTP requests to the management interface of Cisco RV160/RV160W/RV260/RV260P/RV260W routers
  • Exploitation requires no authentication; alert on unauthenticated access attempts to the management interface of affected Cisco Small Business VPN routers
  • ·Vulnerability stems from improper validation of HTTP requests; ensure the web-based management interface is not exposed to untrusted networks
  • ·Affected devices include Cisco Small Business RV160, RV160W, RV260, RV260P, and RV260W VPN Routers; verify firmware versions against Cisco's fixed release guidance (Bug IDs: CSCvw13908, CSCvw13917, CSCvw19718)

CVSS provenance

nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.010.0CRITICALAV:N/AC:L/Au:N/C:C/I:C/A:C
vendor_cisco9.8CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.