CVE-2019-1653

Опубликовано: 24 янв. 2019

Источник: nvd

CVSS3: 7.5

CVSS2: 5

EPSS Критический

Описание

A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an unauthenticated, remote attacker to retrieve sensitive information. The vulnerability is due to improper access controls for URLs. An attacker could exploit this vulnerability by connecting to an affected device via HTTP or HTTPS and requesting specific URLs. A successful exploit could allow the attacker to download the router configuration or detailed diagnostic information. Cisco has released firmware updates that address this vulnerability.

Ссылки

http://packetstormsecurity.com/files/152260/Cisco-RV320-Unauthenticated-Configuration-Export.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/152261/Cisco-RV320-Unauthenticated-Diagnostic-Data-Retrieval.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/152305/Cisco-RV320-RV325-Unauthenticated-Remote-Code-Execution.html
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2019/Mar/59
Exploit
Mailing List
Third Party Advisory
http://seclists.org/fulldisclosure/2019/Mar/60
Exploit
Mailing List
Third Party Advisory
http://www.securityfocus.com/bid/106732
Third Party Advisory
VDB Entry
https://badpackets.net/over-9000-cisco-rv320-rv325-routers-vulnerable-to-cve-2019-1653/
Third Party Advisory
https://seclists.org/bugtraq/2019/Mar/53
Mailing List
Third Party Advisory
https://seclists.org/bugtraq/2019/Mar/54
Mailing List
Third Party Advisory
https://threatpost.com/scans-cisco-routers-code-execution/141218/
Third Party Advisory
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190123-rv-info
Vendor Advisory
https://www.exploit-db.com/exploits/46262/
Exploit
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/46655/
Third Party Advisory
VDB Entry
https://www.youtube.com/watch?v=bx0RQJDlGbY
Third Party Advisory
https://www.zdnet.com/article/hackers-are-going-after-cisco-rv320rv325-routers-using-a-new-exploit/
Third Party Advisory
http://packetstormsecurity.com/files/152260/Cisco-RV320-Unauthenticated-Configuration-Export.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/152261/Cisco-RV320-Unauthenticated-Diagnostic-Data-Retrieval.html
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/152305/Cisco-RV320-RV325-Unauthenticated-Remote-Code-Execution.html
Third Party Advisory
VDB Entry
http://seclists.org/fulldisclosure/2019/Mar/59
Exploit
Mailing List
Third Party Advisory
http://seclists.org/fulldisclosure/2019/Mar/60
Exploit
Mailing List
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одновременно

Одно из

cpe:2.3:o:cisco:rv320_firmware:1.4.2.15:*:*:*:*:*:*:*

cpe:2.3:o:cisco:rv320_firmware:1.4.2.17:*:*:*:*:*:*:*

cpe:2.3:h:cisco:rv320:-:*:*:*:*:*:*:*

Конфигурация 2

Одновременно

Одно из

cpe:2.3:o:cisco:rv325_firmware:1.4.2.15:*:*:*:*:*:*:*

cpe:2.3:o:cisco:rv325_firmware:1.4.2.17:*:*:*:*:*:*:*

cpe:2.3:h:cisco:rv325:-:*:*:*:*:*:*:*

EPSS

Процентиль: 100%

0.94378

Критический

7.5 High

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-284

NVD-CWE-noinfo

Связанные уязвимости

GHSA-j8w2-wx5p-fvx4

CVSS3: 7.5

github

больше 3 лет назад

BDU:2019-00340

CVSS3: 7.5

fstec

около 7 лет назад

Уязвимость веб-интерфейса микропрограммного обеспечения маршрутизаторов Cisco Small Business RV320 и Cisco Small Business RV325, позволяющая нарушителю раскрыть защищаемую информацию

EPSS

Процентиль: 100%

0.94378

Критический

7.5 High

CVSS3

7.5 High

CVSS3

5 Medium

CVSS2

Дефекты

CWE-284

NVD-CWE-noinfo