CVE-2022-20705

Published: Feb 10, 2022Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Multiple vulnerabilities in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code Elevate privileges Execute arbitrary commands Bypass authentication and authorization protections Fetch and run unsigned software Cause denial of service (DoS) For more information about these vulnerabilities, see the Details section of this advisory.

Affected (9)

Products: Cisco: Rv340 Firmware, Rv340w Firmware, Rv345 Firmware, Rv345p Firmware, Rv160 Firmware, Rv160w Firmware, Rv260 Firmware, Rv260p Firmware, Rv260w Firmware

9 products

Configuration A

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Rv340 Firmware	Up to 1.0.03.24

Running on/with	Platform Versions
Cisco Rv340	All versions

Configuration B

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Rv340w Firmware	Up to 1.0.03.24

Running on/with	Platform Versions
Cisco Rv340w	All versions

Configuration C

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Rv345 Firmware	Up to 1.0.03.24

Running on/with	Platform Versions
Cisco Rv345	All versions

Configuration D

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Rv345p Firmware	Up to 1.0.03.24

Running on/with	Platform Versions
Cisco Rv345p	All versions

Configuration E

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Rv160 Firmware	Up to 1.0.01.05

Running on/with	Platform Versions
Cisco Rv160	All versions

Configuration F

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Rv160w Firmware	Up to 1.0.01.05

Running on/with	Platform Versions
Cisco Rv160w	All versions

Configuration G

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Rv260 Firmware	Up to 1.0.01.05

Running on/with	Platform Versions
Cisco Rv260	All versions

Configuration H

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Rv260p Firmware	Up to 1.0.01.05

Running on/with	Platform Versions
Cisco Rv260p	All versions

Configuration I

1 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Rv260w Firmware	Up to 1.0.01.05

Running on/with	Platform Versions
Cisco Rv260w	All versions

Related CWEs

CWE-121

Stack-based Buffer Overflow

A stack-based buffer overflow condition is a condition where the buffer being overwritten is allocated on the stack (i.e., is a local variable or, rarely, a parameter to a function).

CWE-787

Out-of-bounds Write

The product writes data past the end, or before the beginning, of the intended buffer.

References (10)

http://packetstormsecurity.com/files/170988/Cisco-RV-Series-Authentication-Bypass-Command-Injection.html

Source: psirt@cisco.com

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-smb-mult-vuln-KA9PK6D

Source: psirt@cisco.com

Vendor Advisory

https://www.zerodayinitiative.com/advisories/ZDI-22-409/

Source: psirt@cisco.com

Third Party AdvisoryVDB Entry

https://www.zerodayinitiative.com/advisories/ZDI-22-410/

Source: psirt@cisco.com

Third Party AdvisoryVDB Entry

https://www.zerodayinitiative.com/advisories/ZDI-22-415/

Source: psirt@cisco.com

Third Party AdvisoryVDB Entry

http://packetstormsecurity.com/files/170988/Cisco-RV-Series-Authentication-Bypass-Command-Injection.html