CVE-2022-20842

Name of the Vulnerable Software and Affected Versions Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers (affected versions not specified) Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN (affected versions not specified)

Description The issue is related to multiple vulnerabilities in the web interface management of the affected routers, which could allow an unauthenticated, remote attacker to execute arbitrary code or cause a denial of service (DoS) condition on an affected device. The vulnerability is associated with errors in processing input data, potentially allowing a remote attacker to execute arbitrary code in the context of the root user or cause a denial of service.

Recommendations For Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers, at the moment, there is no information about a newer version that contains a fix for this vulnerability. For Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN, at the moment, there is no information about a newer version that contains a fix for this vulnerability.