Cisco Small Business RV110W, RV130, RV130W, and RV215W Series Routers Command Shell Injection Vulnerability
Description
A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Series Routers could allow an authenticated, remote attacker to inject arbitrary shell commands that are executed by an affected device. The vulnerability is due to insufficient input validation of user-supplied data. An attacker could exploit this vulnerability by sending a crafted request to the web-based management interface of an affected device. A successful exploit could allow the attacker to execute arbitrary shell commands or scripts with root privileges on the affected device.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Authenticated remote command injection in Cisco Small Business RV series routers allows arbitrary shell commands with root privileges.
Vulnerability
The vulnerability is a command injection in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Series Routers. It stems from insufficient input validation of user-supplied data. An authenticated remote attacker can send a crafted request to inject arbitrary shell commands. Affected versions are those running firmware prior to the fixed releases mentioned in the Cisco advisory [1].
Exploitation
An attacker must have valid credentials to the web-based management interface. They then send a specially crafted HTTP request containing malicious shell commands. The device processes the request and executes the commands with root privileges. No additional user interaction is required beyond authentication.
Impact
Successful exploitation allows the attacker to execute arbitrary shell commands or scripts with root privileges on the affected device. This leads to full compromise of the router, including potential data exfiltration, further network attacks, or denial of service.
Mitigation
Cisco has released free software updates to address this vulnerability. Customers are advised to upgrade to the fixed firmware versions as specified in the Cisco Security Advisory [1]. No workarounds are mentioned; upgrading is the recommended mitigation. The advisory does not list the specific fixed version numbers, but customers should consult the advisory for details.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: n/a
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cmd-shell-injection-9jOQn9Dymitrevendor-advisoryx_refsource_CISCO
News mentions
0No linked articles in our index yet.