Rv016 Multi Wan Vpn Firmware

rv016_multi-wan_vpn_firmware

Vendor: Cisco • 4 CVEs

CVEs (4)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2019-15957 1Cisco 6Rv016 Multi Wan Vpn Firmware Rv042 Dual Wan VpnRv042g Dual Gigabit Wan Vpn Firmware+3 more Nov 21, 2024 Sep 23, 2020 N/A· v4 7.2 HIGH· v3 9.0 HIGH· v2 A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an authenticated, remote attacker with administrative privileges to inject arbitrary commands into the u...Show more A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an authenticated, remote attacker with administrative privileges to inject arbitrary commands into the underlying operating system. When processed, the commands will be executed with root privileges. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by providing malicious input to a specific field in the web-based management interface of an affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying Linux operating system as the root user.Show less
CVE-2019-15990 1Cisco 4Rv016 Multi Wan Vpn Firmware Rv042 Dual Wan Vpn FirmwareRv042g Dual Gigabit Wan Vpn Firmware+1 more Nov 21, 2024 Nov 26, 2019 N/A· v4 5.3 MEDIUM· v3 5.0 MEDIUM· v2 A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an unauthenticated, remote attacker to view information displayed in the web-based management interface....Show more A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an unauthenticated, remote attacker to view information displayed in the web-based management interface. The vulnerability is due to improper authorization of HTTP requests. An attacker could exploit this vulnerability by sending crafted HTTP requests to the web-based management interface of an affected device. A successful exploit could allow the attacker to view information displayed in the web-based management interface without authentication.Show less
CVE-2019-15271 1Cisco 4Rv016 Multi Wan Vpn Firmware Rv042 Dual Wan Vpn FirmwareRv042g Dual Gigabit Wan Vpn Firmware+1 more Oct 28, 2025 Nov 26, 2019 N/A· v4 8.8 HIGH· v3 9.0 HIGH· v2 A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an authenticated, remote attacker to execute arbitrary commands with root privileges. The attacker must...Show more A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an authenticated, remote attacker to execute arbitrary commands with root privileges. The attacker must have either a valid credential or an active session token. The vulnerability is due to lack of input validation of the HTTP payload. An attacker could exploit this vulnerability by sending a malicious HTTP request to the web-based management interface of the targeted device. A successful exploit could allow the attacker to execute commands with root privileges.Show less
CVE-2015-6418 1Cisco 7Rv016 Multi Wan Vpn Firmware Rv042 Dual Wan Vpn Router FirmwareRv042g Dual Gigabit Wan Vpn Firmware+4 more May 6, 2026 Dec 13, 2015 N/A· v4 N/A· v3 4.3 MEDIUM· v2 The random-number generator on Cisco Small Business RV routers 4.x and SA500 security appliances 2.2.07 does not have sufficient entropy, which makes it easier for remote attackers to determine a TLS key pair via unspeci...Show more The random-number generator on Cisco Small Business RV routers 4.x and SA500 security appliances 2.2.07 does not have sufficient entropy, which makes it easier for remote attackers to determine a TLS key pair via unspecified computations upon handshake key-exchange data, aka Bug ID CSCus15224.Show less