CVE-2023-20117

CWE-146 CWE-78 — OS Command Injection5 documents5 sources

Severity

7.2HIGH

EPSS

0.4%

top 42.44%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Cisco Small Business RV Series Router Firmware Cisco Rv320 Firmware Cisco Rv325 Firmware

Timeline

PublishedApr 5

Latest updateJul 21

Description

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker to inject and execute arbitrary commands on the underlying operating system of an affected device. These vulnerabilities are due to insufficient validation of user-supplied input. An attacker could exploit these vulnerabilities by sending malicious input to an affected device. A successful exploit could allow the attacke…

CVSS vector

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:HExploitability: 1.2 | Impact: 5.9

Affected Packages3 packages

▶CVEListV5cisco/cisco_small_business_rv_series_router_firmwaren/a

▶NVDcisco/rv320_firmware1.5.1.13

▶NVDcisco/rv325_firmware1.5.1.13

🔴Vulnerability Details

CVEList

Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers Command Injection Vulnerabilities↗2023-04-05

▶

GHSA

GHSA-cg3w-xf55-wj9x: Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an aut↗2023-04-05

▶

🔍Detection Rules

Suricata

ET WEB_SPECIFIC_APPS Cisco RV Series Router sys_setting.htm md5_password Parameter Command Injection Attempt (CVE-2023-20117)↗2025-07-21

▶

📋Vendor Advisories

Cisco

Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers Command Injection Vulnerabilities↗2023-04-05

▶