CVE-2022-20707 Small Business RV160, RV260, RV340, and RV345 routers could be exploited by an attacker to execute arbitrary code, elevate privileges, or bypass authentication and authorization.

Cisco Small Business RV Series Routers running Cisco IOS Software could allow an attacker to exploit multiple vulnerabilities to execute arbitrary code, elevate privileges, bypass authentication and authorization, and cause a denial of service (DoS) to the device. Cisco has released software updates that address these vulnerabilities. There are no workarounds. However, you can mitigate these vulnerabilities by configuring basic security best practices, such as anti-virus, firewall, and intrusion detection/prevention measures. Details - Cisco Small Business RV Series Routers running Cisco IOS Software could allow an attacker to exploit multiple vulnerabilities to execute arbitrary code, elevate privileges, bypass authentication and authorization, and cause a denial of service (DoS) to the device. Cisco has released software updates that address these vulnerabilities. There are no workarounds. However, you can mitigate these vulnerabilities by configuring basic security best practices, such as anti-virus, firewall, and intrusion detection/prevention measures. - Multiple Cisco Small Business RV Series Routers running Cisco IOS Software could be exploited due to multiple vulnerabilities. Cisco has released software updates that address these vulnerabilities. There are no workarounds. However, you can mitigate these vulnerabilities by configuring basic security best practices, such as anti-virus, firewall, and intrusion detection/prevention measures

Running Cisco Small Business RV Series Routers with Cisco IOS Software

The Software Engineering Team has released software updates that address these vulnerabilities. There are no workarounds. However, you can mitigate these vulnerabilities by configuring basic security best practices, such as anti-virus, firewall, and intrusion detection/prevention measures.
Cisco Small Business RV Series Routers running Cisco IOS Software may contain multiple vulnerabilities due to the following:
1. An error in the authentication process could be exploited to cause a buffer overflow attack resulting in a denial of service (DoS) condition or execute arbitrary code on the device.
2. Multiple memory corruption vulnerabilities may allow an attacker to execute arbitrary code on the device resulting in a denial of service (DoS) condition or elevate privileges on the device.
3. A vulnerability in the web management interface could allow an authenticated remote attacker to bypass authentication and gain elevated privileges on the device providing access to sensitive information.
4. A vulnerability exists where an authenticated remote attacker could cause a DoS condition on the device by exploiting data types of static-content files containing specially crafted XML documents in HTML responses received by web servers hosting network services listening on TCP port 443.

Products and features affected by these vulnerabilities

- Cisco Small Business RV Series Routers running Cisco IOS Software
- Cisco IOS Software

Cisco Small Business RV Series Routers running Cisco IOS Software could be exploited due to multiple vulnerabilities. Cisco has released software updates that address these vulnerabilities. There are no workarounds. However, you can mitigate these vulnerabilities by configuring basic security best practices, such as anti-virus, firewall, and intrusion detection/prevention measures

Multiple Cisco Small Business RV Series Routers Running Cisco IOS Software Could Be Exploited

Due to Multiple Vulnerabilities
The Cisco Small Business RV Series Routers running Cisco IOS Software could be exploited due to multiple vulnerabilities. Cisco has released software updates that address these vulnerabilities. There are no workarounds. However, you can mitigate these vulnerabilities by configuring basic security best practices, such as anti-virus, firewall, and intrusion detection/prevention measures.

Summary

Cisco Small Business RV Series Routers running Cisco IOS Software could allow an attacker to exploit multiple vulnerabilities to execute arbitrary code, elevate privileges, bypass authentication and authorization, and cause a denial of service (DoS) to the device. Cisco has released software updates that address these vulnerabilities. There are no workarounds. However, you can mitigate these vulnerabilities by configuring basic security best practices, such as anti-virus, firewall, and intrusion detection/prevention measures.

Timeline

Published on: 02/10/2022 18:15:00 UTC
Last modified on: 03/29/2022 16:08:00 UTC

References

• https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-smb-mult-vuln-KA9PK6D
• https://www.zerodayinitiative.com/advisories/ZDI-22-411/
• https://www.zerodayinitiative.com/advisories/ZDI-22-419/
• https://www.zerodayinitiative.com/advisories/ZDI-22-409/
• https://web.nvd.nist.gov/view/vuln/detail?vulnId=CVE-2022-20707