VYPR

Small Business RV Series Routers

by Cisco Systems, Inc.

CVEs (13)

  • CVE-2022-20707CriFeb 10, 2022
    risk 0.74cvss 10.0epss 0.75

    Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization protections Fetch and…

  • CVE-2019-15271HigKEVNov 26, 2019
    risk 0.70cvss 8.8epss 0.06

    A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an authenticated, remote attacker to execute arbitrary commands with root privileges. The attacker must have either a valid credential or an active session token.…

  • CVE-2021-1309HigApr 8, 2021
    risk 0.48cvss 7.4epss 0.01

    Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business RV Series Routers. An unauthenticated, adjacent attacker could execute arbitrary code or cause an affected router to leak system memory or reload. A memory leak or…

  • CVE-2021-1308HigApr 8, 2021
    risk 0.48cvss 7.4epss 0.00

    Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business RV Series Routers. An unauthenticated, adjacent attacker could execute arbitrary code or cause an affected router to leak system memory or reload. A memory leak or…

  • CVE-2021-1251HigApr 8, 2021
    risk 0.48cvss 7.4epss 0.00

    Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business RV Series Routers. An unauthenticated, adjacent attacker could execute arbitrary code or cause an affected router to leak system memory or reload. A memory leak or…

  • CVE-2019-15957HigSep 23, 2020
    risk 0.47cvss 7.2epss 0.03

    A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an authenticated, remote attacker with administrative privileges to inject arbitrary commands into the underlying operating system. When processed, the commands…

  • CVE-2021-1473MedApr 8, 2021
    risk 0.43cvss 5.3epss 0.64

    Multiple vulnerabilities exist in the web-based management interface of Cisco Small Business RV Series Routers. A remote attacker could execute arbitrary commands or bypass authentication and upload files on an affected device. For more information about these vulnerabilities,…

  • CVE-2021-1472MedApr 8, 2021
    risk 0.43cvss 5.3epss 0.72

    Multiple vulnerabilities exist in the web-based management interface of Cisco Small Business RV Series Routers. A remote attacker could execute arbitrary commands or bypass authentication and upload files on an affected device. For more information about these vulnerabilities,…

  • CVE-2021-40120MedNov 4, 2021
    risk 0.42cvss 6.5epss 0.02

    A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an authenticated, remote attacker with administrative privileges to inject arbitrary commands into the underlying operating system and execute them using…

  • CVE-2019-15990MedNov 26, 2019
    risk 0.35cvss 5.3epss 0.01

    A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an unauthenticated, remote attacker to view information displayed in the web-based management interface. The vulnerability is due to improper authorization of HTTP…

  • CVE-2020-3453MedSep 4, 2020
    risk 0.31cvss 4.7epss 0.03

    Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute arbitrary commands on the underlying operating system (OS) as a restricted user.…

  • CVE-2020-3451MedSep 4, 2020
    risk 0.31cvss 4.7epss 0.02

    Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute arbitrary commands on the underlying operating system (OS) as a restricted user.…

  • CVE-2015-6418Dec 13, 2015
    risk 0.00cvss epss 0.02

    The random-number generator on Cisco Small Business RV routers 4.x and SA500 security appliances 2.2.07 does not have sufficient entropy, which makes it easier for remote attackers to determine a TLS key pair via unspecified computations upon handshake key-exchange data, aka Bug…