Unrated severityNVD Advisory· Published Mar 6, 2014· Updated May 6, 2026

CVE-2014-0683

Description

The web management interface on the Cisco RV110W firewall with firmware 1.2.0.9 and earlier, RV215W router with firmware 1.1.0.5 and earlier, and CVR100W router with firmware 1.0.1.19 and earlier does not prevent replaying of modified authentication requests, which allows remote attackers to obtain administrative access by leveraging the ability to intercept requests, aka Bug IDs CSCul94527, CSCum86264, and CSCum86275.

Affected products

Cisco Systems, Inc./Cvr100w
cpe:2.3:h:cisco:cvr100w:-:*:*:*:*:*:*:*
Cisco Systems, Inc./Rv110w
cpe:2.3:h:cisco:rv110w:-:*:*:*:*:*:*:*
Cisco Systems, Inc./Rv215w
cpe:2.3:h:cisco:rv215w:-:*:*:*:*:*:*:*
Cisco Systems, Inc./Cvr100w Firmware
cpe:2.3:o:cisco:cvr100w_firmware:*:*:*:*:*:*:*:*
Range: <=1.0.1.19
Cisco Systems, Inc./Rv110w Firmware
cpe:2.3:o:cisco:rv110w_firmware:*:*:*:*:*:*:*:*
Range: <=1.2.0.9
Cisco Systems, Inc./Rv215w Firmware
cpe:2.3:o:cisco:rv215w_firmware:*:*:*:*:*:*:*:*
Range: <=1.1.0.5

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140305-rpdnvdPatchVendor Advisory
www.exploit-db.com/exploits/45986/nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.024
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000