Cisco RV110W, RV130W, and RV215W Routers Unauthenticated syslog File Access Vulnerability
Description
A vulnerability in the web-based management interface of Cisco RV110W, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to access the syslog file on an affected device. The vulnerability is due to improper authorization of an HTTP request. An attacker could exploit this vulnerability by accessing the URL for the syslog file. A successful exploit could allow the attacker to access the information contained in the file.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Unauthenticated remote attackers can download the syslog file from Cisco RV110W, RV130W, and RV215W routers via a direct HTTP request, leaking sensitive device and network information.
Vulnerability
The vulnerability exists in the web-based management interface of Cisco RV110W Wireless-N VPN Firewall, RV130W Wireless-N Multifunction VPN Router, and RV215W Wireless-N VPN Router. Due to improper authorization of an HTTP request, the syslog file at /_syslog.txt can be accessed without authentication. All software releases prior to the fixed version are affected [2].
Exploitation
An unauthenticated, remote attacker can exploit this vulnerability by making a direct HTTP GET request to http:///_syslog.txt [1]. No authentication or prior knowledge is required; the attacker only needs network access to the router's management interface [2].
Impact
Successful exploitation allows the attacker to download the complete syslog file, which contains sensitive information such as failed login attempts (with source IP addresses), PPTP and DHCP logs (including local/remote IP addresses and DNS servers), LAN-to-WAN forwarding entries (with IP and MAC addresses), wireless association events (with client MAC and BSSID), and other operational logs [1]. This information could be used for further reconnaissance or targeted attacks.
Mitigation
Cisco has released software updates to address this vulnerability. Fixed releases are available for the affected products, as indicated by the Cisco bug IDs referenced in the advisory [2]. There are no workarounds that mitigate this vulnerability [2]. Users should update their router firmware to the latest version provided by Cisco.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
4- Range: unspecified
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-rv-fileaccessmitrevendor-advisoryx_refsource_CISCO
- www.securityfocus.com/bid/108865mitrevdb-entryx_refsource_BID
- www.tenable.com/security/research/tra-2019-29mitrex_refsource_MISC
News mentions
0No linked articles in our index yet.