CVE-2021-1473

CVE Database · CVE-2021-1473

CVE-2021-1473

· MEDIUMModified

CVSS v3.1

5.3

EPSS

64.16%

Published

Apr 8, 2021

Modified

Nov 21, 2024

Public PoC / Exploit (1)

All weaponized →

TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

Multiple vulnerabilities exist in the web-based management interface of Cisco Small Business RV Series Routers. A remote attacker could execute arbitrary commands or bypass authentication and upload files on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Weaknesses (CWE)

CWE-119CWE-78

Affected Products (8)

cisco · rv340_firmware (up to 1.0.03.21)vulnerable

cisco · rv340

cisco · rv340w_firmware (up to 1.0.03.21)vulnerable

cisco · rv340w

cisco · rv345_firmware (up to 1.0.03.21)vulnerable

cisco · rv345

cisco · rv345p_firmware (up to 1.0.03.21)vulnerable