Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Remote Command Execution and Denial of Service Vulnerability
Description
A vulnerability in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to execute arbitrary code or cause an affected device to restart unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due to insufficient user input validation of incoming HTTP packets. An attacker could exploit this vulnerability by sending a crafted request to the web-based management interface. A successful exploit could allow the attacker to execute arbitrary commands on an affected device using root-level privileges. Cisco has not released software updates that address this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Unauthenticated remote code execution and DoS in Cisco Small Business RV110W, RV130, RV130W, and RV215W due to improper HTTP input validation.
Vulnerability
The vulnerability resides in the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W routers [1]. It is caused by insufficient user input validation of incoming HTTP packets [1]. Affected versions are those running firmware on the listed hardware models; no specific firmware version numbers are provided in the advisory [1]. The web interface is reachable via LAN or WAN if remote management is enabled (disabled by default) [1].
Exploitation
An unauthenticated, remote attacker can exploit this vulnerability by sending a crafted HTTP request to the web-based management interface [1]. No authentication or prior access is required. The attacker only needs network connectivity to the target device (LAN or WAN with remote management enabled) [1].
Impact
Successful exploitation allows the attacker to execute arbitrary commands with root-level privileges on the affected device [1]. This can lead to full device compromise, data exfiltration, or a denial-of-service (DoS) condition by causing an unexpected restart [1].
Mitigation
Cisco has not released software updates to address this vulnerability, and no workarounds are available [1]. The devices are end-of-life and end-of-support, meaning no patches will be provided [1]. Disabling remote management (default) reduces the attack surface but does not eliminate the risk from LAN access [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: n/a
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-rv-overflow-s2r82P9vmitrevendor-advisoryx_refsource_CISCO
News mentions
0No linked articles in our index yet.