Cisco Rv110W Wireless-N Vpn Firewall Firmware vulnerabilities

CVE-2020-3330 [CRITICAL] CWE-798 CVE-2020-3330: A vulnerability in the Telnet service of Cisco Small Business RV110W Wireless-N VPN Firewall Routers A vulnerability in the Telnet service of Cisco Small Business RV110W Wireless-N VPN Firewall Routers could allow an unauthenticated, remote attacker to take full control of the device with a high-privileged account. The vulnerability exists because a system account has a default and static password. An attacker could exploit this vulnerability by us

CVE-2020-3331 [CRITICAL] CWE-119 CVE-2020-3331: A vulnerability in the web-based management interface of Cisco RV110W Wireless-N VPN Firewall and Ci A vulnerability in the web-based management interface of Cisco RV110W Wireless-N VPN Firewall and Cisco RV215W Wireless-N VPN Router could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. The vulnerability is due to improper validation of user-supplied input data by the web-based management interface. An att

CVE-2020-3323 [CRITICAL] CWE-119 CVE-2020-3323: A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. The vulnerability is due to improper validation of user-supplied input in the web-based management interface. An attacker could exploi

CVE-2020-3332 [HIGH] CWE-78 CVE-2020-3332: A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Series Routers could allow an authenticated, remote attacker to inject arbitrary shell commands that are executed by an affected device. The vulnerability is due to insufficient input validation of user-supplied data. An attacker could exploit

CVE-2020-3146 [HIGH] CWE-119 CVE-2020-3146: Multiple vulnerabilities in the web-based management interface of the Cisco RV110W Wireless-N VPN Fi Multiple vulnerabilities in the web-based management interface of the Cisco RV110W Wireless-N VPN Firewall, RV130 VPN Router, RV130W Wireless-N Multifunction VPN Router, and RV215W Wireless-N VPN Router could allow an authenticated, remote attacker to execute arbitrary code on an affected device. The vulnerabilities are due to improper validation of use

CVE-2016-1395 [CRITICAL] CWE-20 CVE-2016-1395: The web-based management interface on Cisco RV110W devices with firmware before 1.2.1.7, RV130W devi The web-based management interface on Cisco RV110W devices with firmware before 1.2.1.7, RV130W devices with firmware before 1.0.3.16, and RV215W devices with firmware before 1.3.0.8 allows remote attackers to execute arbitrary code as root via a crafted HTTP request, aka Bug ID CSCux82428.

CVE-2016-1397 [MEDIUM] CWE-119 CVE-2016-1397: Buffer overflow in the web-based management interface on Cisco RV110W devices with firmware before 1 Buffer overflow in the web-based management interface on Cisco RV110W devices with firmware before 1.2.1.7, RV130W devices with firmware before 1.0.3.16, and RV215W devices with firmware before 1.3.0.8 allows remote authenticated users to cause a denial of service (device reload) via crafted configuration commands in an HTTP request, aka Bug ID CSCux8

CVE-2016-1396 [MEDIUM] CWE-79 CVE-2016-1396: Cross-site scripting (XSS) vulnerability in the web-based management interface on Cisco RV110W devic Cross-site scripting (XSS) vulnerability in the web-based management interface on Cisco RV110W devices with firmware before 1.2.1.7, RV130W devices with firmware before 1.0.3.16, and RV215W devices with firmware before 1.3.0.8 allows remote attackers to inject arbitrary web script or HTML via a crafted parameter, aka Bug ID CSCux82583.