CVE-2021-1472: Cisco Small Business RV Series Routers Vulnerabilities
First published: Thu Apr 08 2021(Updated: )
Multiple vulnerabilities exist in the web-based management interface of Cisco Small Business RV Series Routers. A remote attacker could execute arbitrary commands or bypass authentication and upload files on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Rv160 Firmware | <1.0.01.03 | |
| Cisco Rv160 | ||
| Cisco Rv160w Firmware | <1.0.01.03 | |
| Cisco Rv160w | ||
| Cisco Rv260 Firmware | <1.0.01.03 | |
| Cisco Rv260 | ||
| Cisco Rv260p Firmware | <1.0.01.03 | |
| Cisco Rv260p | ||
| Cisco Rv260w Firmware | <1.0.01.03 | |
| Cisco Rv260w | ||
| Cisco Rv340 Firmware | <1.0.03.21 | |
| Cisco RV340 | ||
| Cisco Rv340w Firmware | <1.0.03.21 | |
| Cisco Rv340w | ||
| Cisco Rv345 Firmware | <1.0.03.21 | |
| Cisco Rv345 | ||
| Cisco Rv345p Firmware | <1.0.03.21 | |
| Cisco Rv345p |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2021-1472?
CVE-2021-1472 is a vulnerability that exists in the web-based management interface of Cisco Small Business RV Series Routers, allowing a remote attacker to execute arbitrary commands or bypass authentication and upload files on an affected device.
How severe is CVE-2021-1472?
CVE-2021-1472 has a severity score of 9.8, which is considered critical.
Which software versions are affected by CVE-2021-1472?
The Cisco Rv160 Firmware, Cisco Rv160w Firmware, Cisco Rv260 Firmware, Cisco Rv260p Firmware, Cisco Rv260w Firmware, Cisco Rv340 Firmware, Cisco Rv340w Firmware, Cisco Rv345 Firmware, and Cisco Rv345p Firmware are affected by CVE-2021-1472.
How can I fix CVE-2021-1472?
Update the firmware of the affected Cisco Small Business RV Series Routers to a version that includes a fix for CVE-2021-1472.
Where can I find more information about CVE-2021-1472?
You can find more information about CVE-2021-1472 on the Cisco Security Advisory, as well as on the provided reference links.
- collector/nvd-index
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/last-modified-date
- agent/author
- agent/severity
- agent/weakness
- agent/title
- agent/tags
- agent/description
- agent/first-publish-date
- agent/event
- vendor/cisco
- canonical/cisco rv160 firmware
- canonical/cisco rv160
- canonical/cisco rv160w firmware
- canonical/cisco rv160w
- canonical/cisco rv260 firmware
- canonical/cisco rv260
- canonical/cisco rv260p firmware
- canonical/cisco rv260p
- canonical/cisco rv260w firmware
- canonical/cisco rv260w
- canonical/cisco rv340 firmware
- canonical/cisco rv340
- canonical/cisco rv340w firmware
- canonical/cisco rv340w
- canonical/cisco rv345 firmware
- canonical/cisco rv345
- canonical/cisco rv345p firmware
- canonical/cisco rv345p