Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2021-1609
HistoryAug 04, 2021 - 6:15 p.m.

CVE-2021-1609

2021-08-0418:15:08
CWE-121
[email protected]
web.nvd.nist.gov
7
cisco
small business
vpn routers
web-based management
vulnerabilities
denial of service
arbitrary code
advisory

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

56.4%

JSON

Multiple vulnerabilities in the web-based management interface of the Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an attacker to do the following: Execute arbitrary code Cause a denial of service (DoS) condition Execute arbitrary commands For more information about these vulnerabilities, see the Details section of this advisory.

Affected configurations

Nvd
Node
ciscosmall_business_rv_series_router_firmwareRange<1.0.03.22
AND
ciscosmall_business_rv340Match-
OR
ciscosmall_business_rv340wMatch-
OR
ciscosmall_business_rv345Match-
OR
ciscosmall_business_rv345pMatch-
VendorProductVersionCPE
ciscosmall_business_rv_series_router_firmware*cpe:2.3:o:cisco:small_business_rv_series_router_firmware:*:*:*:*:*:*:*:*
ciscosmall_business_rv340-cpe:2.3:h:cisco:small_business_rv340:-:*:*:*:*:*:*:*
ciscosmall_business_rv340w-cpe:2.3:h:cisco:small_business_rv340w:-:*:*:*:*:*:*:*
ciscosmall_business_rv345-cpe:2.3:h:cisco:small_business_rv345:-:*:*:*:*:*:*:*
ciscosmall_business_rv345p-cpe:2.3:h:cisco:small_business_rv345p:-:*:*:*:*:*:*:*

Related

prion 1
cvelist 1
cve 1
cnvd 1
nessus 1
cisco 1
avleonov 1
thn 1
threatpost 2
prion
prion
Design/Logic Flaw
2021-08-04 18:15:00
cvelist
cvelist
CVE-2021-1609 Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Web Management Vulnerabilities
2021-08-04 17:20:31
cve
cve
CVE-2021-1609
2021-08-04 18:15:08
cnvd
cnvd
Multiple vulnerabilities exist in Cisco Small Business RV340 and Cisco Small Business
2021-08-06 00:00:00
nessus
nessus
Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Multiple Vulnerabilities (cisco-sa-rv340-cmdinj-rcedos-pY8J3qfy)
2021-08-04 00:00:00
cisco
cisco
Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Web Management Vulnerabilities
2021-08-04 16:00:00
avleonov
avleonov
Last Week’s Security News: Black Hat Pwnie Awards, iPhone Checks Photos, Evil Windows Print Server, Cisco VPN Routers Takeovers
2021-08-11 22:18:24
thn
thn
Cisco Issues Critical Security Patches to Fix Small Business VPN Router Bugs
2021-08-05 06:02:00
threatpost
threatpost
30 Mins or Less: Rapid Attacks Extort Orgs Without Ransomware
2021-10-13 11:22:00
Critical Cisco Bug in VPN Routers Allows Remote Takeover
2021-08-06 16:07:55

CVSS2

10

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

CVSS3

9.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

EPSS

0.002

Percentile

56.4%

JSON
Related for NVD:CVE-2021-1609
prion1cvelist1cve1cnvd1nessus1cisco1avleonov1thn1threatpost2