Severity Rating: HIGH
Component Affected
RV016 Multi-WAN VPN: 4.2.3.10 and prior
RV042 Dual WAN VPN: 4.2.3.10 and prior
RV042G Dual Gigabit WAN VPN: 4.2.3.10 and prior
RV082 Dual WAN VPN: 4.2.3.10 and prior
RV320 Dual Gigabit WAN VPN: 1.5.1.05 and prior
RV325 Dual Gigabit WAN VPN: 1.5.1.05 and prior
Cisco Small Business RV110W Wireless-N VPN Firewall
Cisco Small Business RV130 VPN Router
Cisco Small Business RV130W Wireless-N
Multifunction VPN Router
Cisco Small Business RV215W Wireless-N VPN Router
RV016 Multi-WAN VPN: 4.2.3.10 and prior
RV042 Dual WAN VPN: 4.2.3.10 and prior
RV042G Dual Gigabit WAN VPN: 4.2.3.10 and prior
RV082 Dual WAN VPN: 4.2.3.10 and prior
RV320 Dual Gigabit WAN VPN: 1.5.1.05 and prior
RV325 Dual Gigabit WAN VPN: 1.5.1.05 and prior.
Overview
Multiple Vulnerabilities have been reported in the web-based management
interface of Cisco Small Business RV320, RV110W, RV130, RV130W,RV215W and
RV325 Series Routers and Cisco Small Business RV016, RV042, and RV082
Routers which could allow an authenticated, remote attacker with
administrative privileges to execute arbitrary commands on an affected
device.
Description
These Vulnerabilities exist in web-based management interface of Cisco
Small Business RV320, , RV110W, RV130, RV130W,RV215Wand RV325 Series
Routers and Cisco Small Business RV016, RV042, and RV082 Routers due to
insufficient boundary restrictions on user-supplied input to scripts in the
web-based management interface that could allow the attacker to execute
arbitrary actions with administrative privileges on an affected device,
causing a stack overflow. An attacker could exploit this vulnerability by
sending malicious requests to an affected device.
Successful exploitation of this vulnerability could allow the attacker to
execute arbitrary commands with root privileges on the underlying operating
system.
Solution
Apply appropriate updates as mentioned in:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco- -sa-rv-routers-Rj5JRfF8
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco- -sa-rv-routers-injection-tWC7krKQ
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco- -sa-rv-routers-stack-vUxHmnNz
Vendor Information
CISCO
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco- -sa-rv-routers-Rj5JRfF8
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco- -sa-rv-routers-injection-tWC7krKQ
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco- -sa-rv-routers-stack-vUxHmnNz
References
CISCO
- -sa-rv-routers-Rj5JRfF8
- -sa-rv-routers-injection-tWC7krKQ
- -sa-rv-routers-stack-vUxHmnNz
CVE Name
CVE-2020-3274
CVE-2020-3275
CVE-2020-3276
CVE-2020-3277
CVE-2020-3278
CVE-2020-3279
CVE-2020-3268
CVE-2020-3269
CVE-2020-3286
CVE-2020-3287
CVE-2020-3288
CVE-2020-3289
CVE-2020-3290
CVE-2020-3291
CVE-2020-3292
CVE-2020-3293
CVE-2020-3294
CVE-2020-3295
CVE-2020-3296
About Cert Advisory
We have created this blog to provide latest security advisory from the india cert for the security vulnerability, threats, attacks and patching required to mitigate any kind of cyber attacks.