CVE-2024-20393
published 2024-10-02CVE-2024-20393: A vulnerability in the web-based management interface of Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an…
PriorityP357high8.8CVSS 3.1
AVNACLPRLUINSUCHIHAH
EPSS
0.59%
43.7th percentile
A vulnerability in the web-based management interface of Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an authenticated, remote attacker to elevate privileges on an affected device.
This vulnerability exists because the web-based management interface discloses sensitive information. An attacker could exploit this vulnerability by sending crafted HTTP input to an affected device. A successful exploit could allow an attacker to elevate privileges from guest to admin.
Affected
101 ranges· showing 25
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | cisco_small_business_rv_series_router_firmware | — | — |
| cisco | rv340_dual_wan_gigabit_vpn_router_firmware | — | — |
| cisco | rv340_dual_wan_gigabit_vpn_router_firmware | — | — |
| cisco | rv340_dual_wan_gigabit_vpn_router_firmware | — | — |
| cisco | rv340_dual_wan_gigabit_vpn_router_firmware | — | — |
| cisco | rv340_dual_wan_gigabit_vpn_router_firmware | — | — |
Detection & IOCsextracted from sources · hover to see the quote
- →Vulnerability is exploitable via crafted HTTP input to the web-based management interface; monitor for anomalous or unexpected HTTP requests to the RV340/RV340W/RV345/RV345P management interface, particularly those that result in privilege changes from guest to admin. ↗
- →The vulnerability stems from sensitive information disclosure in the web-based management interface; audit responses from the management interface for unintended exposure of credentials or session tokens that could be leveraged for privilege escalation. ↗
- →Track Cisco bug IDs CSCwk99655 and CSCwm27935 for any future threat intelligence or PoC disclosures related to this CVE. ↗
- ·Cisco PSIRT will continue disclosing vulnerabilities for these products until their Last Dates of Support, meaning additional CVEs for the same device family may follow. ↗
CVSS provenance
nvdv3.18.8HIGHCVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
vendor_cisco8.8HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Privilege Escalation and Remote Command Execution Vulnerabilities
vendor_cisco·2024-10-02·CVSS 8.8
CVE-2024-20393 [HIGH] CWE-146 Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Privilege Escalation and Remote Command Execution Vulnerabilities
Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Privilege Escalation and Remote Command Execution Vulnerabilities
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an authenticated, remote attacker to elevate privileges and execute arbitrary commands on the underlying operating system of an affected device.
For more information about these vulnerabilities, see the Details section of this advisory.
Cisco has not released and will not release software updates that address these vulnerabilities because the affected products are past their respective dates for End of Software Maintenance Releases. The Cisco Product Security Incident Response Team (P
Cisco
Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Privilege Escalation and Remote Command Execution Vulnerabilities
vendor_cisco·CVSS 3.1
CVE-2024-20393 Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Privilege Escalation and Remote Command Execution Vulnerabilities
CVE-2024-20393: Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Privilege Escalation and Remote Command Execution Vulnerabilities
Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an authenticated, remote attacker to elevate privileges and execute arbitrary commands on the underlying operating system of an affected device. For more information about these vulnerabilities, see the
CVSS: 3.1
CWE: CWE-146, CWE-285, CWE-146, CWE-285
Bug IDs: CSCwk99655, CSCwm27935, CSCwm27935, CSCwk99655
GHSA
GHSA-95px-w8x3-2w55: A vulnerability in the web-based management interface of Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allo
ghsa_unreviewed·2024-10-02
CVE-2024-20393 [HIGH] CWE-285 GHSA-95px-w8x3-2w55: A vulnerability in the web-based management interface of Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allo
A vulnerability in the web-based management interface of Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an authenticated, remote attacker to elevate privileges on an affected device.
This vulnerability exists because the web-based management interface discloses sensitive information. An attacker could exploit this vulnerability by sending crafted HTTP input to an affected device. A successful exploit could allow an attacker to elevate privileges from guest to admin.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2024-10-02
Published