Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV340 Series Routers could allow an authenticated, remote attacker with administrative credentials to execute arbitrary commands on the underlying operating system (OS) as a restricted user. For more information about these vulnerabilities, see the Details section of this advisory.
References
Link | Resource |
---|---|
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-osinj-rce-pwTkPCJv | Vendor Advisory |
https://www.zerodayinitiative.com/advisories/ZDI-20-1100/ | Third Party Advisory VDB Entry |
Configurations
Configuration 1 (hide)
AND |
|
Configuration 2 (hide)
AND |
|
Configuration 3 (hide)
AND |
|
Configuration 4 (hide)
AND |
|
History
06 Aug 2021, 19:02
Type | Values Removed | Values Added |
---|---|---|
References | (MISC) https://www.zerodayinitiative.com/advisories/ZDI-20-1100/ - Third Party Advisory, VDB Entry | |
CWE | CWE-20 |
Information
Published : 2020-09-04 03:15
Updated : 2024-02-04 21:00
NVD link : CVE-2020-3451
Mitre link : CVE-2020-3451
CVE.ORG link : CVE-2020-3451
JSON object : View
Products Affected
cisco
- rv345_firmware
- rv340_firmware
- rv340w_firmware
- rv340w
- rv345
- rv340
- rv345p
- rv345p_firmware