Vulnerability Description
Buffer overflow in the web-based management interface on Cisco RV110W devices with firmware through 1.2.1.4, RV130W devices with firmware through 1.0.2.7, and RV215W devices with firmware through 1.3.0.7 allows remote authenticated users to cause a denial of service (device reload) via a crafted HTTP request, aka Bug ID CSCux86669.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Rv130W Firmware | 1.0.0.21 |
| Cisco | Rv130W | - |
| Cisco | Rv110W Firmware | 1.1.0.9 |
| Cisco | Rv110W | - |
| Cisco | Rv215W Firmware | 1.1.0.5 |
| Cisco | Rv215W | - |
Related Weaknesses (CWE)
References
- http://www.securitytracker.com/id/1036115
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
- http://www.securitytracker.com/id/1036115
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
FAQ
What is CVE-2016-1398?
CVE-2016-1398 is a vulnerability with a CVSS score of 6.5 (MEDIUM). Buffer overflow in the web-based management interface on Cisco RV110W devices with firmware through 1.2.1.4, RV130W devices with firmware through 1.0.2.7, and RV215W devices with firmware through 1.3....
How severe is CVE-2016-1398?
CVE-2016-1398 has been rated MEDIUM with a CVSS base score of 6.5/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2016-1398?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Rv130W Firmware, Cisco Rv130W, Cisco Rv110W Firmware, Cisco Rv110W, Cisco Rv215W Firmware.