Unrated severityNVD Advisory· Published Apr 3, 2024· Updated Nov 7, 2024

CVE-2024-20362

Description

A vulnerability in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the interface. This vulnerability is due to insufficient input validation by the web-based management interface. An attacker could exploit this vulnerability by persuading a user to visit specific web pages that include malicious payloads. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Cisco Small Business RV series routers are vulnerable to stored XSS via insufficient input validation, allowing remote unauthenticated attackers to execute script in the management interface.

Vulnerability

The web-based management interface of Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers contains a cross-site scripting (XSS) vulnerability due to insufficient input validation [1]. This affects all firmware versions of these router models. The vulnerability exists in the management interface that processes user-supplied input without proper sanitization.

Exploitation

An unauthenticated, remote attacker can exploit this vulnerability by persuading a user to visit specially crafted web pages that include malicious payloads [1]. The attacker does not require any prior authentication or network access beyond the ability to deliver a link to the victim. The user must interact with the crafted page while logged into the router's management interface.

Impact

Successful exploitation allows the attacker to execute arbitrary script code in the context of the affected interface or access sensitive, browser-based information such as session tokens or cookies [1]. The attacker gains the same privileges as the victim user within the management interface.

Mitigation

Cisco has not released a firmware update to address this vulnerability [1]. The only mitigations involve disabling remote management and blocking access to ports 443 and 60443 on the WAN interface. For RV320 and RV325 routers, disabling remote management is sufficient. For RV016, RV042, RV042G, and RV082 routers, additionally block ports 443 and 60443 [1]. Detailed configuration steps are provided in the Cisco advisory.

References

Cisco Security Advisory: Cisco Small Business RV016, RV042, RV042G, RV082, RV320, and RV325 Routers Cross-Site Scripting Vulnerability

AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Cisco Systems, Inc./Small Business RV042, RV042G, RV320, and RV325 Routersllm-fuzzy
Cisco Systems, Inc./Small Business Rv Series Router Firmwarecpe-rescue
Range: 1.1.0.09

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sbiz-rv-xss-OQeRTupmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000