Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Small Business RV110W, RV130, RV130W, and RV215W Series Routers Command Shell Injection Vulnerability
Vulnerability Description
A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Series Routers could allow an authenticated, remote attacker to inject arbitrary shell commands that are executed by an affected device. The vulnerability is due to insufficient input validation of user-supplied data. An attacker could exploit this vulnerability by sending a crafted request to the web-based management interface of an affected device. A successful exploit could allow the attacker to execute arbitrary shell commands or scripts with root privileges on the affected device.
CVSS Information
N/A
Vulnerability Type
OS命令中使用的特殊元素转义处理不恰当(OS命令注入)
Vulnerability Title
多款Cisco产品操作系统命令注入漏洞
Vulnerability Description
Cisco Small Business RV110W Wireless-N VPN Firewall Routers和Cisco Small Business RV130都是美国思科(Cisco)公司的一款VPN路由器。 多款Cisco产品中的Web管理界面存在操作系统命令注入漏洞,该漏洞源于程序没有正确验证用户提供的数据。远程攻击者可借助特制请求利用该漏洞以root用户权限执行任意shell命令或脚本。以下产品及版本受到影响:Cisco Small Business RV110W Wireless-N
CVSS Information
N/A
Vulnerability Type
N/A