CVE-2022-20923

Published: Sep 8, 2022Modified: Nov 21, 2024

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

A vulnerability in the IPSec VPN Server authentication functionality of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to bypass authentication controls and access the IPSec VPN network. This vulnerability is due to the improper implementation of the password validation algorithm. An attacker could exploit this vulnerability by logging in to the VPN from an affected device with crafted credentials. A successful exploit could allow the attacker to bypass authentication and access the IPSec VPN network. The attacker may obtain privileges that are the same level as an administrative user, depending on the crafted credentials that are used. Cisco has not released software updates that address this vulnerability.

Affected (12)

Products: Cisco: Rv110w Firmware, Rv130 Firmware, Rv130w Firmware, Rv215w Firmware

4 products

Configuration A

3 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Rv110w Firmware	Version 1.0.3.55
Cisco Rv110w Firmware	Version 1.2.2.8
Cisco Rv110w Firmware	Version 1.3.1.7

Running on/with	Platform Versions
Cisco Rv110w	All versions

Configuration B

3 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Rv130 Firmware	Version 1.0.3.55
Cisco Rv130 Firmware	Version 1.2.2.8
Cisco Rv130 Firmware	Version 1.3.1.7

Running on/with	Platform Versions
Cisco Rv130	All versions

Configuration C

3 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Rv130w Firmware	Version 1.0.3.55
Cisco Rv130w Firmware	Version 1.2.2.8
Cisco Rv130w Firmware	Version 1.3.1.7

Running on/with	Platform Versions
Cisco Rv130w	All versions

Configuration D

3 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Cisco Rv215w Firmware	Version 1.0.3.55
Cisco Rv215w Firmware	Version 1.2.2.8
Cisco Rv215w Firmware	Version 1.3.1.7

Running on/with	Platform Versions
Cisco Rv215w	All versions

Related CWEs

CWE-287

Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

CWE-303

Incorrect Implementation of Authentication Algorithm

The requirements for the product dictate the use of an established authentication algorithm, but the implementation of the algorithm is incorrect.

References (2)

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-rv-vpnbypass-Cpheup9O

Source: psirt@cisco.com

Vendor Advisory

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-rv-vpnbypass-Cpheup9O

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.