CVE-2019-1652

Опубликовано: 24 янв. 2019

Источник: nvd

CVSS3: 7.2

CVSS2: 9

EPSS Критический

Описание

A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands. The vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending malicious HTTP POST requests to the web-based management interface of an affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying Linux shell as root. Cisco has released firmware updates that address this vulnerability.

Ссылки

http://packetstormsecurity.com/files/152262/Cisco-RV320-Command-Injection.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/152305/Cisco-RV320-RV325-Unauthenticated-Remote-Code-Execution.html
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2019/Mar/61
Exploit
Mailing List
Third Party Advisory
http://www.securityfocus.com/bid/106728
Third Party Advisory
VDB Entry
https://seclists.org/bugtraq/2019/Mar/55
Exploit
Mailing List
Third Party Advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190123-rv-inject
Vendor Advisory
https://www.exploit-db.com/exploits/46243/
Exploit
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/46655/
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/152262/Cisco-RV320-Command-Injection.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/152305/Cisco-RV320-RV325-Unauthenticated-Remote-Code-Execution.html
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2019/Mar/61
Exploit
Mailing List
Third Party Advisory
http://www.securityfocus.com/bid/106728
Third Party Advisory
VDB Entry
https://seclists.org/bugtraq/2019/Mar/55
Exploit
Mailing List
Third Party Advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190123-rv-inject
Vendor Advisory
https://www.exploit-db.com/exploits/46243/
Exploit
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/46655/
Exploit
Third Party Advisory
VDB Entry
https://www.cisa.gov/known-exploited-vulnerabilities-catalog?field_cve=CVE-2019-1652
US Government Resource

Уязвимые конфигурации

Конфигурация 1

Одновременно

cpe:2.3:o:cisco:rv320_firmware:*:*:*:*:*:*:*:*

Версия от 1.4.2.15 (включая) до 1.4.2.22 (исключая)

cpe:2.3:h:cisco:rv320:-:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

cpe:2.3:o:cisco:rv325_firmware:*:*:*:*:*:*:*:*

Версия от 1.4.2.15 (включая) до 1.4.2.22 (исключая)

cpe:2.3:h:cisco:rv325:-:*:*:*:*:*:*:*

EPSS

Процентиль: 100%

0.92947

Критический

7.2 High

CVSS3

7.2 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-20

CWE-78

Связанные уязвимости

GHSA-73jm-6x85-hwg5

CVSS3: 7.2

github

больше 3 лет назад

BDU:2019-00407

CVSS3: 7.2

fstec

больше 7 лет назад

Уязвимость веб-интерфейса микропрограммного обеспечения маршрутизаторов Cisco Small Business RV320 и Cisco Small Business RV325, позволяющая нарушителю выполнить произвольный код с привилегиями root

EPSS

Процентиль: 100%

0.92947

Критический

7.2 High

CVSS3

7.2 High

CVSS3

9 Critical

CVSS2

Дефекты

CWE-20

CWE-78