Connect with us

Hi, what are you looking for?

SecurityWeekSecurityWeek

Network Security

Critical Flaws Found in Cisco Small Business Routers

Researchers have uncovered several critical and high severity vulnerabilities in Cisco’s small business RV series routers. The networking giant has released patches for some of the security holes.

Researchers have uncovered several critical and high severity vulnerabilities in Cisco’s small business RV series routers. The networking giant has released patches for some of the security holes.

According to advisories published by Cisco on Wednesday, RV110W, RV130W and RV215W routers include a default account that can be leveraged by an attacker to gain root access to the device (CVE-2015-6397). The default account should normally be read-only and not have root privileges.

Cisco also informed customers about a critical vulnerability in RV180 and RV180W VPN routers. The flaw affects the web interface and it allows remote, authenticated attackers to execute arbitrary code with root privileges (CVE-2016-1430).

The same RV router models are also affected by a high severity flaw that can be exploited remotely to perform a directory traversal and access arbitrary files on the system (CVE-2016-1429).

RV110W, RV130W and RV215W routers are also plagued by a medium severity command shell injection vulnerability that allows a local attacker to inject arbitrary shell commands and have them executed by the device.

Cisco has released firmware updates to address the flaws affecting RV110W, RV130W and RV215W routers, but the company will not issue fixes for the RV180 and RV180W models since these are no longer sold.

The vulnerabilities were reported to Cisco by Adam Zielinski and Harri Kuosmanen. The firm says it’s not aware of any attacks involving these weaknesses.

Advertisement. Scroll to continue reading.

In mid-June, Cisco informed customers of four security holes affecting its RV series routers, including one rated critical. Patches for those flaws were released by the company a few days after the initial disclosure.

Related: Flaws in Ruckus Access Points Expose Organizations to Attacks

Related: Netgear Routers Plagued by Serious Vulnerabilities

Related: Apple Patches RCE Flaw in AirPort Routers

Written By

Eduard Kovacs (@EduardKovacs) is a contributing editor at SecurityWeek. He worked as a high school IT teacher for two years before starting a career in journalism as Softpedia’s security news reporter. Eduard holds a bachelor’s degree in industrial informatics and a master’s degree in computer techniques applied in electrical engineering.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

SecurityWeek’s Threat Detection and Incident Response Summit brings together security practitioners from around the world to share war stories on breaches, APT attacks and threat intelligence.

Register

Securityweek’s CISO Forum will address issues and challenges that are top of mind for today’s security leaders and what the future looks like as chief defenders of the enterprise.

Register

Expert Insights

Related Content

Identity & Access

Zero trust is not a replacement for identity and access management (IAM), but is the extension of IAM principles from people to everyone and...

Cybersecurity Funding

Network security provider Corsa Security last week announced that it has raised $10 million from Roadmap Capital. To date, the company has raised $50...

Network Security

Attack surface management is nothing short of a complete methodology for providing effective cybersecurity. It doesn’t seek to protect everything, but concentrates on areas...

Identity & Access

Hackers rarely hack in anymore. They log in using stolen, weak, default, or otherwise compromised credentials. That’s why it’s so critical to break the...

Network Security

NSA publishes guidance to help system administrators identify and mitigate cyber risks associated with transitioning to IPv6.

Cyberwarfare

Websites of German airports, administration bodies and banks were hit by DDoS attacks attributed to Russian hacker group Killnet

Application Security

Fortinet on Monday issued an emergency patch to cover a severe vulnerability in its FortiOS SSL-VPN product, warning that hackers have already exploited the...

Network Security

Our networks have become atomized which, for starters, means they’re highly dispersed. Not just in terms of the infrastructure – legacy, on-premises, hybrid, multi-cloud,...