cbcvebase.
CVE-2021-1610
published 2021-08-04

CVE-2021-1610: Multiple vulnerabilities in the web-based management interface of the Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could…

PriorityP262high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
9.06%
94.6th percentile
Multiple vulnerabilities in the web-based management interface of the Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an attacker to do the following: Execute arbitrary code Cause a denial of service (DoS) condition Execute arbitrary commands For more information about these vulnerabilities, see the Details section of this advisory.

Affected

3 ranges
VendorProductVersion rangeFixed in
ciscocisco_small_business_rv_series_router_firmware
ciscorv340_rv340w_rv345_and_rv345p_dual_wan_gigabit_vpn_routers_web_management
ciscosmall_business_rv_series_router_firmware< 1.0.03.221.0.03.22

Detection & IOCsextracted from sources · hover to see the quote

  • The vulnerability exists due to improper validation of HTTP requests sent to the web-based management interface; monitor for anomalous or malformed HTTP requests targeting the management interface of affected Cisco RV340/RV345 series routers.
  • Affected devices: Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers. Track firmware versions below 1.0.03.22 as unpatched and vulnerable.
  • Cisco Bug IDs CSCvy15286 and CSCvy15342 are associated with CVE-2021-1610; use these identifiers when querying Cisco PSIRT or internal ticketing systems.
  • ·CVE-2021-1609 and CVE-2021-1610 can be exploited independently; some firmware versions may only be affected by one of the two vulnerabilities.
  • ·No public proof-of-concept exploit was available at the time of the Tenable blog publication; exploitation risk may be lower than for CVE-2021-1609 (CVSS 9.8) but should still be treated urgently given historical targeting of Cisco Small Business routers.

CVSS provenance

nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
nvdv2.09.0CRITICALAV:N/AC:L/Au:S/C:C/I:C/A:C
vendor_cisco9.8CRITICAL
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.