A vulnerability in the web-based management interface of Cisco Small Business RV042 Series Routers could allow an unauthenticated, remote attacker to bypass authentication on the affected device. This vulnerability is due to incorrect user input validation of incoming HTTP packets. An attacker could exploit this vulnerability by sending crafted requests to the web-based management interface. A successful exploit could allow the attacker to gain root privileges on the affected device.
History

Mon, 28 Oct 2024 17:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


cve-icon MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2023-01-19T01:33:39.023Z

Updated: 2024-10-28T16:41:32.942Z

Reserved: 2022-10-27T18:47:50.309Z

Link: CVE-2023-20025

cve-icon Vulnrichment

Updated: 2024-08-02T08:57:35.838Z

cve-icon NVD

Status : Modified

Published: 2023-01-20T07:15:14.490

Modified: 2024-11-21T07:40:22.940

Link: CVE-2023-20025

cve-icon Redhat

No data.