CVE-2022-20749Stack-based Buffer Overflow in Cisco Rv340 Firmware

CWE-121Stack-based Buffer OverflowCWE-787Out-of-bounds WriteCWE-269Improper Privilege ManagementCWE-285Improper AuthorizationCWE-295Improper Certificate ValidationCWE-347Improper Verification of Cryptographic SignatureCWE-362Race ConditionCWE-434Unrestricted File UploadCWE-552Files or Directories Accessible to External PartiesCWE-754Improper Check for Unusual or Exceptional ConditionsCWE-77Command InjectionCWE-785Use of Path Manipulation Function without Maximum-sized Buffer4 documents4 sources
Severity
9.8CRITICALNVD
CNA10.0
EPSS
2.4%
top 14.93%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Cisco Rv340 FirmwareCisco Rv340w FirmwareCisco Rv345 Firmware+2 more
Timeline
PublishedFeb 10
Latest updateFeb 11

Description

Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization protections Fetch and run unsigned software Cause denial of service (DoS) For more information about these vulnerabilities, see the Details section of this advisory.

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages5 packages

NVDcisco/rv340_firmware1.0.03.24
NVDcisco/rv345_firmware1.0.03.24
NVDcisco/rv340w_firmware1.0.03.24
NVDcisco/rv345p_firmware1.0.03.24

🔴Vulnerability Details

2
GHSA
GHSA-gr7m-q2r6-m5x6: Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Exe2022-02-11
CVEList
Cisco Small Business RV Series Routers Vulnerabilities2022-02-10

📋Vendor Advisories

1
Cisco
Cisco Small Business RV Series Routers Vulnerabilities2022-02-02
CVE-2022-20749 — Stack-based Buffer Overflow in Cisco | cvebase