Free and open-source vulnerability scanner
Mageni eases for you the vulnerability scanning, assessment, and management process. It is free and open-source.
Install NowAvailable for macOS, Windows, and Linux
CVE-2014-0683
CVE information
Published
Last Modified
CVSSv2.0 Severity
Impact Analysis
Description
The web management interface on the Cisco RV110W firewall with firmware 1.2.0.9 and earlier, RV215W router with firmware 1.1.0.5 and earlier, and CVR100W router with firmware 1.0.1.19 and earlier does not prevent replaying of modified authentication requests, which allows remote attackers to obtain administrative access by leveraging the ability to intercept requests, aka Bug IDs CSCul94527, CSCum86264, and CSCum86275..
CVSSv2.0 Score
- Severity
- High
- Base Score
- 10/10
- Exploit Score
- 10/10
- Access Vector
- Network
- Access Complexity
- Low
- Authentication Required
- None
- Impact Score
- 10/10
- Confidentiality Impact
- Complete
- Availability Impact
- Complete
- Integrity Impact
- Complete
Products Affected
| CPE | Affected | Vulnerable | Excluding | Edit |
|---|---|---|---|---|
| cpe:2.3:o:cisco:rv110w_firmware:*:*:*:*:*:*:*:* |
Yes
|
- | ||
| cpe:2.3:h:cisco:rv110w:-:*:*:*:*:*:*:* |
Yes
|
- | ||
| cpe:2.3:o:cisco:rv215w_firmware:*:*:*:*:*:*:*:* |
Yes
|
- | ||
| cpe:2.3:h:cisco:rv215w:-:*:*:*:*:*:*:* |
Yes
|
- | ||
| cpe:2.3:o:cisco:cvr100w_firmware:*:*:*:*:*:*:*:* |
Yes
|
- | ||
| cpe:2.3:h:cisco:cvr100w:-:*:*:*:*:*:*:* |
Yes
|
- |