Published: 16/07/2020 Updated: 23/07/2020

CVSS v2 Base Score: 10 | Impact Score: 10 | Exploitability Score: 10

CVSS v3 Base Score: 9.8 | Impact Score: 5.9 | Exploitability Score: 3.9

VMScore: 890

Vector: AV:N/AC:L/Au:N/C:C/I:C/A:C

A vulnerability in the web-based management interface of Cisco RV110W Wireless-N VPN Firewall and Cisco RV215W Wireless-N VPN Router could allow an unauthenticated, remote malicious user to execute arbitrary code on an affected device. The vulnerability is due to improper validation of user-supplied input data by the web-based management interface. An attacker could exploit this vulnerability by sending crafted requests to a targeted device. A successful exploit could allow the malicious user to execute arbitrary code with the privileges of the root user.

Vulnerable Product	Search on Vulmon	Subscribe to Product
cisco rv110w_wireless-n_vpn_firewall_firmware
cisco rv215w_wireless-n_vpn_router_firmware

A vulnerability in the web-based management interface of Cisco RV110W Wireless-N VPN Firewall and Cisco RV215W Wireless-N VPN Router could allow an unauthenticated, remote attacker to execute arbitrary code on an affected device The vulnerability is due to improper validation of user-supplied input data by the web-based management interface An at ...

Security Collecttion

安全项目收集，在此处收集一些Github以及其他开源项目 Tips：很多都是Star中的，可以去我的Star里面看看安全扫描工具 XRAY 说明：一款功能强大的安全评估工具功能：XSS检测、SQL注入、命令/代码注入检测、目录枚举、弱口令检测详情 RAD 说明：Rad主要是可以通过爬取网站的URL，泛洪辐射

CWE-119 https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-code-exec-wH3BNFb https://nvd.nist.gov https://github.com/coltisa/Security_Collection https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-code-exec-wH3BNFb

CVE-2020-3331

Vulnerability Summary

Vulnerability Trend

Vendor Advisories

Github Repositories

References

Vulmon Search

About

Products

Connect