CVE-2024-20524

Name of the Vulnerable Software and Affected Versions Cisco Small Business RV042, RV042G, RV320, and RV325 Routers (affected versions not specified)

Description The issue is related to improper validation of user input in incoming HTTP packets, which could allow a remote attacker to cause an unexpected reload of the device, resulting in a denial of service (DoS) condition. The attacker would need to have valid Administrator credentials on the affected device to exploit this vulnerability. This can be achieved by sending a crafted HTTP request to the web-based management interface of the affected device.

Recommendations To resolve the issue, update the firmware of the Cisco Small Business RV042, RV042G, RV320, and RV325 Routers to a version that includes the fix for this vulnerability. At the moment, there is no information about a newer version that contains a fix for this vulnerability.