Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers IPSec VPN Server Authentication Bypass Vulnerability
Description
A vulnerability in the IPSec VPN Server authentication functionality of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to bypass authentication controls and access the IPSec VPN network. This vulnerability is due to the improper implementation of the password validation algorithm. An attacker could exploit this vulnerability by logging in to the VPN from an affected device with crafted credentials. A successful exploit could allow the attacker to bypass authentication and access the IPSec VPN network. The attacker may obtain privileges that are the same level as an administrative user, depending on the crafted credentials that are used. Cisco has not released software updates that address this vulnerability.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Unauthenticated remote attacker can bypass IPSec VPN authentication on multiple Cisco Small Business routers due to flawed password validation algorithm.
Vulnerability
A vulnerability in the IPSec VPN Server authentication of Cisco Small Business RV110W, RV130, RV130W, and RV215W routers allows an unauthenticated, remote attacker to bypass authentication controls. The issue stems from improper implementation of the password validation algorithm. Affected devices must have the IPSec VPN Server feature enabled (configured via VPN > IPSec VPN Server > Setup). Cisco has not released software updates addressing this vulnerability [1].
Exploitation
An attacker can exploit this vulnerability by sending crafted credentials during the IPSec VPN login process from an affected device. No prior authentication or user interaction is required; the attacker only needs network access to the VPN server. The improper password validation algorithm allows the crafted credentials to be accepted, bypassing normal authentication [1].
Impact
Successful exploitation grants the attacker access to the IPSec VPN network. Depending on the crafted credentials used, the attacker may obtain privileges equivalent to an administrative user, potentially leading to full control of the VPN and connected resources [1].
Mitigation
As of the advisory publication date (September 8, 2022), Cisco has not released software updates to fix this vulnerability. No workarounds are available. Users are advised to monitor Cisco's security advisories for future updates. If the IPSec VPN Server is not required, disabling it may reduce exposure [1].
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: n/a
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-rv-vpnbypass-Cpheup9Omitrevendor-advisoryx_refsource_CISCO
News mentions
0No linked articles in our index yet.