Published: 07/11/2014 Updated: 09/10/2018

CVSS v2 Base Score: 9 | Impact Score: 10 | Exploitability Score: 8

VMScore: 801

Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C

The network-diagnostics administration interface in the Cisco RV router firmware on RV220W devices, prior to 1.0.5.9 on RV120W devices, and prior to 1.0.4.14 on RV180 and RV180W devices allows remote authenticated users to execute arbitrary commands via a crafted HTTP request, aka Bug ID CSCuh87126.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco rv120w_firmware
cisco rv120w -
cisco rv220w_firmware
cisco rv220w -
cisco rv180_firmware
cisco rv180w -
cisco rv180 -

The Cisco RV120W Wireless-N VPN Firewall, Cisco RV180 VPN Router, Cisco RV180W Wireless-N Multifunction VPN Router, and Cisco RV220W Wireless Network Security Firewall are affected by the following vulnerabilities: Cisco RV Series Routers Command Injection Vulnerability Cisco RV Series Routers HTTP Referer Header Vulnerability Cisco RV ...

CWE-94 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141105-rv http://seclists.org/fulldisclosure/2014/Nov/6 http://packetstormsecurity.com/files/128992/Cisco-RV-Overwrite-CSRF-Command-Execution.html http://www.securitytracker.com/id/1031171 https://exchange.xforce.ibmcloud.com/vulnerabilities/98497 http://www.securityfocus.com/archive/1/533917/100/0/threaded https://nvd.nist.gov http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141105-rv

Get Started

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Twitter Reddit Linkedin Facebook

CVE-2014-2177

Vulnerability Summary

Vendor Advisories

References

Vulmon Search

About

Products

Connect