1. This site uses cookies. By continuing to use this site, you are agreeing to our use of cookies. Learn More.

Multiple Vulnerabilities in Cisco Small Business RV Series Routers

Discussion in 'LinksysInfo News' started by Toxic, Nov 6, 2014.

Thread Status:
Not open for further replies.
  1. Toxic

    Toxic Administrator Staff Member

    Symptom:
    The Cisco RV120W Wireless-N VPN Firewall, Cisco RV180 VPN Router, Cisco RV180W Wireless-N Multifunction VPN Router, and Cisco RV220W Wireless Network Security Firewall are affected by the following vulnerabilities:

    Cisco RV Series Routers Command Injection Vulnerability
    Cisco RV Series Routers HTTP Referer Header Vulnerability
    Cisco RV Series Routers Insecure File Upload Vulnerability

    These vulnerabilities are independent of each other; a release that is affected by one of the vulnerabilities may not be affected by the others.

    Cisco has released free software updates that address these vulnerabilities. Workarounds that mitigate these vulnerabilities are available. This advisory is available at the following link:
    http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141105-rv

    Conditions:
    Default configuration.
    Workaround:
    See Workarounds section of published advisory.
    More Info:
    PSIRT Evaluation:

    PSIRT has published an advisory regarding the vulnerability disclosed in this Cisco Bug Id at: http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141105-rv
     
Thread Status:
Not open for further replies.

Share This Page