T. Shiomitsu

**Name of the Vulnerable Software and Affected Versions** Cisco RV340, RV340W, RV345, and RV345P versions (affected versions not specified) **Description** The issue is related to a buffer overflow in the messaging service of the affected routers, which could allow an authenticated, local attacker to execute arbitrary commands with root privileges on the underlying operating system. This is due to the internal messaging service not properly sanitizing input. To exploit this, an attacker must first authenticate to the device and then send a crafted request to the internal service. **Recommendations** For Cisco RV340, RV340W, RV345, and RV345P, consider restricting access to the internal messaging service until a patch is available. As a temporary workaround, avoid using the vulnerable `vpntimer` function until a fix is provided. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco Small Business RV160, RV160W, RV260, RV260P, and RV260W VPN Routers (affected versions not specified) **Description** The issue is related to multiple vulnerabilities in the web-based management interface of the affected devices. These vulnerabilities exist due to improper validation of HTTP requests, which could allow an unauthenticated, remote attacker to execute arbitrary code as the root user on an affected device. An attacker could exploit these vulnerabilities by sending a crafted HTTP request to the web-based management interface. A successful exploit could allow the attacker to remotely execute arbitrary code on the device. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco Small Business RV160, RV160W, RV260, RV260P, and RV260W VPN Routers (affected versions not specified) **Description** The issue is related to multiple vulnerabilities in the web-based management interface of the affected devices. These vulnerabilities exist because HTTP requests are not properly validated, allowing an unauthenticated, remote attacker to execute arbitrary code as the root user on an affected device. An attacker could exploit these vulnerabilities by sending a crafted HTTP request to the web-based management interface of an affected device. A successful exploit could allow the attacker to remotely execute arbitrary code on the device. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco Small Business RV160, RV160W, RV260, RV260P, and RV260W VPN Routers (affected versions not specified) **Description** The issue exists in the web-based management interface of the affected devices due to improper validation of HTTP requests. An unauthenticated, remote attacker could exploit this by sending a crafted HTTP request to the interface, potentially allowing the execution of arbitrary code as the root user on the device. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco Small Business RV160, RV160W, RV260, RV260P, and RV260W VPN Routers (affected versions not specified) **Description** The web-based management interface of the affected devices has multiple vulnerabilities due to insufficient input validation, allowing an unauthenticated, remote attacker to conduct directory traversal attacks and overwrite certain files that should be restricted on an affected system. An attacker could exploit these vulnerabilities by using the web-based management interface to upload a file to a location on an affected device that they should not have access to. A successful exploit could allow the attacker to overwrite files on the file system of the affected device. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco Small Business RV160, RV160W, RV260, RV260P, and RV260W VPN Routers (affected versions not specified) **Description** The issue is related to insufficient input validation in the web-based management interface of the affected devices, allowing an unauthenticated, remote attacker to conduct directory traversal attacks and overwrite certain files that should be restricted on an affected system. An attacker could exploit this by using the web-based management interface to upload a file to a location on an affected device that they should not have access to, potentially overwriting files on the file system of the affected device. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Cisco Small Business RV160, RV160W, RV260, RV260P, and RV260W VPN Routers (affected versions not specified) Description: The issue is related to multiple vulnerabilities in the web-based management interface of the affected devices. These vulnerabilities exist because HTTP requests are not properly validated, allowing an unauthenticated, remote attacker to execute arbitrary code as the root user on an affected device. An attacker could exploit these vulnerabilities by sending a crafted HTTP request to the web-based management interface of an affected device. A successful exploit could allow the attacker to remotely execute arbitrary code on the device. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco Small Business RV160, RV160W, RV260, RV260P, and RV260W VPN Routers (affected versions not specified) **Description** The issue is related to errors in processing HTTP requests in the web-based management interface of the affected devices. This could allow a remote attacker to execute arbitrary code on an affected device. The vulnerabilities exist because HTTP requests are not properly validated. An attacker could exploit these vulnerabilities by sending a crafted HTTP request to the web-based management interface of an affected device. A successful exploit could allow the attacker to remotely execute arbitrary code on the device. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco RV110W Wireless-N VPN Firewall versions prior to 1.2.2.1 Cisco RV130W Wireless-N Multifunction VPN Router versions prior to 1.0.3.45 Cisco RV215W Wireless-N VPN Router versions prior to 1.3.1.1 **Description** The issue is caused by a buffer overflow in the memory due to improper validation of user-supplied data in the web-based management interface. This could allow a remote attacker to execute arbitrary code on an affected device by sending malicious HTTP requests. A successful exploit could allow the attacker to execute arbitrary code on the underlying operating system of the affected device as a high-privilege user. **Recommendations** For Cisco RV110W Wireless-N VPN Firewall versions prior to 1.2.2.1, update to version 1.2.2.1 or later to resolve the issue. For Cisco RV130W Wireless-N Multifunction VPN Router versions prior to 1.0.3.45, update to version 1.0.3.45 or later to resolve the issue. For Cisco RV215W Wireless-N VPN Router versions prior to 1.3.1.1, update to version 1.3.1.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the web-based management interface until a patch is applied.