Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco Small Business RV042, RV042G, RV320, and RV325 Remote Command Execution Vulnerabilities
Vulnerability Description
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to execute arbitrary code as the root user. To exploit this vulnerability, an attacker would need to have valid Administrator credentials on the affected device. This vulnerability is due to improper validation of user-supplied input in the web-based management interface. An attacker could exploit this vulnerability by sending crafted HTTP requests to an affected device. A successful exploit could allow the attacker to execute arbitrary code on the underlying operating system as the root user.
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
Vulnerability Type
栈缓冲区溢出
Vulnerability Title
Cisco Small Business多款产品 安全漏洞
Vulnerability Description
Cisco Small Business RV320和Cisco Small Business RV325都是美国思科(Cisco)公司的一款VPN路由器。 Cisco Small Business多款产品存在安全漏洞,该漏洞源于 Web 管理界面对用户输入的验证不当。允许远程攻击者在受影响设备的底层操作系统上执行任意命令或导致拒绝服务。以下产品受到影响:Cisco Small Business RV042、RV042G、RV320和RV325。
CVSS Information
N/A
Vulnerability Type
N/A