Cisco Small Business RV Series Routers Vulnerabilities

Vulnerability

Multiple vulnerabilities exist in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers. CVE-2022-20842 is a remote code execution and denial of service vulnerability in the web-based management interface of RV340, RV340W, RV345, and RV345P routers, due to insufficient validation of user-supplied input [1]. CVE-2022-20827 is a command injection vulnerability in the web filter database update feature affecting RV160, RV260, RV340, and RV345 series routers, also due to insufficient input validation [1].

Exploitation

An unauthenticated, remote attacker can exploit CVE-2022-20842 by sending crafted HTTP input to the web-based management interface [1]. For CVE-2022-20827, the attacker submits crafted input to the web filter database update feature [1]. No authentication or user interaction is required.

Impact

Successful exploitation of either vulnerability allows the attacker to execute arbitrary code with root privileges on the underlying operating system. For CVE-2022-20842, the attacker can also cause the device to reload, resulting in a denial of service condition [1]. CVE-2022-20827 specifically allows command injection as root [1]. The CVSS base score for CVE-2022-20842 is 9.8 (Critical) [1].

Mitigation

Cisco has released software updates that address these vulnerabilities. There are no workarounds [1]. Affected users should apply the updates as soon as possible.