Unrated severityNVD Advisory· Published Apr 5, 2023· Updated Oct 25, 2024

Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities

CVE-2023-20143

Description

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an unauthenticated, remote attacker to conduct cross-site scripting (XSS) attacks against a user of the interface. These vulnerabilities are due to insufficient input validation by the web-based management interface. An attacker could exploit these vulnerabilities by sending crafted HTTP requests to an affected device and then persuading a user to visit specific web pages that include malicious payloads. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information. Cisco has not released software updates that address these vulnerabilities.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Multiple stored XSS vulnerabilities in Cisco Small Business RV series routers allow unauthenticated remote attackers to execute arbitrary script in the web management interface.

Vulnerability

The vulnerabilities reside in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 routers. They are due to insufficient input validation, allowing an unauthenticated, remote attacker to inject malicious script. No authentication is required to trigger the vulnerability, but user interaction is needed for the XSS to execute.

Exploitation

An attacker can exploit these vulnerabilities by sending crafted HTTP requests to an affected device. The attacker must then persuade a user (e.g., an administrator) to visit specific web pages that include the malicious payloads. The user must be logged into the management interface for the script to execute in that context.

Impact

Successful exploitation allows the attacker to execute arbitrary script code in the context of the affected interface. This could lead to access to sensitive browser-based information, such as session tokens or cookies, and potentially allow the attacker to perform actions as the victim user.

Mitigation

Cisco has not released software updates that address these vulnerabilities. No workarounds are available. As a mitigation, disable remote management on all affected devices. For RV016, RV042, RV042G, and RV082 routers, additionally block access to ports 443 and 60443 from the WAN. Detailed steps are provided in the Cisco Security Advisory [1]. The routers remain accessible via the LAN interface after mitigation.

References

Cisco Security Advisory: Cisco Small Business RV016, RV042, RV042G, RV082 , RV320, and RV325 Routers Cross-Site Scripting Vulnerabilities

AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Cisco Systems, Inc./Small Business RV Series Routersllm-fuzzy
Cisco Systems, Inc./Small Business Rv Series Router Firmwarecpe-rescue
Range: n/a

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-stored-xss-vqz7gC8Wmitrevendor-advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000