CVE-2019-15957: Cisco Small Business Routers RV016, RV042, RV042G, RV082, RV320, and RV325 Command Injection Vulnerability
First published: Wed Sep 23 2020(Updated: )
A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an authenticated, remote attacker with administrative privileges to inject arbitrary commands into the underlying operating system. When processed, the commands will be executed with root privileges. The vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by providing malicious input to a specific field in the web-based management interface of an affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying Linux operating system as the root user.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Rv016 Multi-wan Vpn Firmware | <4.2.3.10 | |
| Cisco Rv016 Multi-wan Vpn | ||
| Cisco Rv042 Dual Wan Vpn | <4.2.3.10 | |
| Cisco Rv042 Dual Wan Vpn | ||
| Cisco Rv042g Dual Gigabit Wan Vpn Firmware | <4.2.3.10 | |
| Cisco Rv042g Dual Gigabit Wan Vpn | ||
| Cisco Rv082 Dual Wan Vpn Router Firmware | <4.2.3.10 | |
| Cisco Rv082 Dual Wan Vpn Router | ||
| Cisco Rv320 Firmware | <1.5.1.05 | |
| Cisco Rv320 Dual Gigabit Wan Vpn Router | ||
| Cisco Rv325 Firmware | <1.5.1.05 | |
| Cisco Rv325 Dual Gigabit Wan Wf Vpn Router |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2019-15957?
The severity of CVE-2019-15957 is critical with a severity value of 7.2.
Which Cisco Small Business RV Series Routers are affected by CVE-2019-15957?
Cisco RV016 Multi-wan Vpn Firmware, Cisco RV042 Dual Wan Vpn, Cisco RV042g Dual Gigabit Wan Vpn Firmware, Cisco RV082 Dual Wan Vpn Router Firmware, Cisco RV320 Firmware, and Cisco RV325 Firmware.
How does CVE-2019-15957 exploit work?
An authenticated, remote attacker with administrative privileges can inject arbitrary commands into the underlying operating system.
What is the CVE-2019-15957 fix?
There is currently no patch available for CVE-2019-15957, but Cisco recommends disabling the web-based management interface or implementing IP-based access control lists (ACLs) to limit access to the affected devices.
Where can I find more information about CVE-2019-15957?
You can find more information about CVE-2019-15957 on the Cisco Security Advisory page: [https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191106-sbr-cominj]
- agent/type
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/weakness
- agent/author
- agent/softwarecombine
- agent/description
- agent/references
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/title
- agent/last-modified-date
- agent/first-publish-date
- agent/tags
- agent/event
- vendor/cisco
- canonical/cisco rv016 multi-wan vpn firmware
- canonical/cisco rv016 multi-wan vpn
- canonical/cisco rv042 dual wan vpn
- canonical/cisco rv042g dual gigabit wan vpn firmware
- canonical/cisco rv042g dual gigabit wan vpn
- canonical/cisco rv082 dual wan vpn router firmware
- canonical/cisco rv082 dual wan vpn router
- canonical/cisco rv320 firmware
- canonical/cisco rv320 dual gigabit wan vpn router
- canonical/cisco rv325 firmware
- canonical/cisco rv325 dual gigabit wan wf vpn router