Unrated severityNVD Advisory· Published Jan 19, 2023· Updated Mar 12, 2025

CVE-2023-20026

Description

A vulnerability in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320 and RV325 Routers could allow an authenticated, remote attacker to execute arbitrary commands on an affected device. This vulnerability is due to improper validation of user input within incoming HTTP packets. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web-based management interface. A successful exploit could allow the attacker to gain root-level privileges and access unauthorized data. To exploit this vulnerability, an attacker would need to have valid administrative credentials on the affected device.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

An authenticated command injection in Cisco Small Business RV routers (RV016, RV042, RV042G, RV082, RV320, RV325) allows root-level RCE via crafted HTTP requests.

Vulnerability

A command injection vulnerability exists in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers. The flaw is due to improper validation of user input within incoming HTTP packets. All software releases running on these models are affected. [1]

Exploitation

An attacker must have valid administrative credentials to access the web-based management interface. The attacker can then send a crafted HTTP request to the interface, which trivially bypasses input validation and allows injection of arbitrary operating system commands. [1]

Impact

Successful exploitation grants the attacker root-level privileges on the affected device, enabling full control of the router and access to unauthorized data. No additional conditions are required beyond authentication. [1]

Mitigation

Cisco has not released software updates to address this vulnerability as of the advisory publication date. No workarounds are available. Affected products may be reaching end-of-life; users are advised to monitor Cisco's advisory for future updates and consider upgrading to unaffected models (e.g., RV160, RV260 series). [1]

References

Cisco Security Advisory: Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers Vulnerabilities

AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Cisco Systems, Inc./Small Business RV Series Routersllm-fuzzy
Cisco Systems, Inc./Small Business Rv Series Router Firmwarecpe-rescue
Range: 1.0.00.29

Patches

No patches discovered yet.

Vulnerability mechanics

No source-code context for this CVE — mechanics is only generated when we can read the actual fix diff. Without that, the four sections (root cause, attack vector, affected code, fix) would be speculation rather than analysis.

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sbr042-multi-vuln-ej76Pke5mitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000