Cisco Rv130W Wireless-N Multifunction Vpn Router Firmware vulnerabilities
5 known vulnerabilities affecting cisco/rv130w_wireless-n_multifunction_vpn_router_firmware.
Total CVEs
5
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2HIGH1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2020-3323CRITICALCVSS 9.8fixed in 1.0.3.542020-07-16
CVE-2020-3323 [CRITICAL] CWE-119 CVE-2020-3323: A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W,
A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device. The vulnerability is due to improper validation of user-supplied input in the web-based management interface. An attacker could exploi
nvd
CVE-2020-3332HIGHCVSS 8.8fixed in 1.0.3.552020-07-16
CVE-2020-3332 [HIGH] CWE-78 CVE-2020-3332: A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W,
A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Series Routers could allow an authenticated, remote attacker to inject arbitrary shell commands that are executed by an affected device. The vulnerability is due to insufficient input validation of user-supplied data. An attacker could exploit
nvd
CVE-2016-1395CRITICALCVSS 9.8v1.0.0.21v1.0.1.3+1 more2016-06-19
CVE-2016-1395 [CRITICAL] CWE-20 CVE-2016-1395: The web-based management interface on Cisco RV110W devices with firmware before 1.2.1.7, RV130W devi
The web-based management interface on Cisco RV110W devices with firmware before 1.2.1.7, RV130W devices with firmware before 1.0.3.16, and RV215W devices with firmware before 1.3.0.8 allows remote attackers to execute arbitrary code as root via a crafted HTTP request, aka Bug ID CSCux82428.
nvd
CVE-2016-1397MEDIUMCVSS 6.5v1.0.0.21v1.0.1.3+1 more2016-06-19
CVE-2016-1397 [MEDIUM] CWE-119 CVE-2016-1397: Buffer overflow in the web-based management interface on Cisco RV110W devices with firmware before 1
Buffer overflow in the web-based management interface on Cisco RV110W devices with firmware before 1.2.1.7, RV130W devices with firmware before 1.0.3.16, and RV215W devices with firmware before 1.3.0.8 allows remote authenticated users to cause a denial of service (device reload) via crafted configuration commands in an HTTP request, aka Bug ID CSCux8
nvd
CVE-2016-1396MEDIUMCVSS 6.1v1.0.0.21v1.0.1.3+1 more2016-06-19
CVE-2016-1396 [MEDIUM] CWE-79 CVE-2016-1396: Cross-site scripting (XSS) vulnerability in the web-based management interface on Cisco RV110W devic
Cross-site scripting (XSS) vulnerability in the web-based management interface on Cisco RV110W devices with firmware before 1.2.1.7, RV130W devices with firmware before 1.0.3.16, and RV215W devices with firmware before 1.3.0.8 allows remote attackers to inject arbitrary web script or HTML via a crafted parameter, aka Bug ID CSCux82583.
nvd