SB2016061501 - Multiple vulnerabilities in Cisco RV110W, RV130W, and RV215W routers
Published: June 15, 2016 Updated: March 1, 2019
Breakdown by Severity
- Low
- Medium
- High
- Critical
Description
This security bulletin contains information about 4 vulnerabilities.
1) Buffer overflow (CVE-ID: CVE-2016-1397)
CWE-ID: CWE-119 - Memory corruption
CVSSv4: CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green
2) Buffer overflow (CVE-ID: CVE-2016-1398)
CWE-ID: CWE-119 - Memory corruption
CVSSv4: CVSS:4.0/AV:A/AC:L/AT:N/PR:L/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green
A vulnerability in the web-based management interface of Cisco RV110W Wireless-N VPN Firewalls, Cisco RV130W Wireless-N Multifunction VPN Routers, and Cisco RV215W Wireless-N VPN Routers could allow an authenticated, remote attacker to cause a buffer overflow on a targeted system, resulting in a denial of service (DoS) condition.
An attacker can exploit this vulnerability by sending an HTTP request that contains configuration commands with a crafted payload.
3) Cross-site scripting (CVE-ID: CVE-2016-1396)
CWE-ID: CWE-79 - Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:A/VC:N/VI:N/VA:N/SC:L/SI:L/SA:N/E:U/U:Clear
A vulnerability in the web-based management interface of Cisco RV110W Wireless-N VPN Firewalls, Cisco RV130W Wireless-N Multifunction VPN Routers, and Cisco RV215W Wireless-N VPN Routers could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface for a targeted device.
A successful exploit can allow the attacker to execute arbitrary script in the context of the web-based management interface for the device or allow the attacker to access sensitive browser-based information.
4) Improper input validation (CVE-ID: CVE-2016-1395)
CWE-ID: CWE-20 - Improper input validation
CVSSv4: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:U/U:Amber
Remediation
Install update from vendor's website.
References
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160615-rv2
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCux82523
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCux82531
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCux82536
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160615-rv3
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCux86664
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCux86675
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCux86669
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160615-rv1
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCux82567
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCux82583
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCux82599
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160615-rv
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCux82416
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCux82422
- https://bst.cloudapps.cisco.com/bugsearch/bug/CSCux82428