Vulnerability Description
Multiple vulnerabilities in the web-based management interface of the Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an attacker to do the following: Execute arbitrary code Cause a denial of service (DoS) condition Execute arbitrary commands For more information about these vulnerabilities, see the Details section of this advisory.
CVSS Score
CRITICAL
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Small Business Rv Series Router Firmware | < 1.0.03.22 |
| Cisco | Small Business Rv340 | - |
| Cisco | Small Business Rv340W | - |
| Cisco | Small Business Rv345 | - |
| Cisco | Small Business Rv345P | - |
Related Weaknesses (CWE)
References
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rVendor Advisory
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rVendor Advisory
FAQ
What is CVE-2021-1609?
CVE-2021-1609 is a vulnerability with a CVSS score of 9.8 (CRITICAL). Multiple vulnerabilities in the web-based management interface of the Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an attacker to do the following: Ex...
How severe is CVE-2021-1609?
CVE-2021-1609 has been rated CRITICAL with a CVSS base score of 9.8/10. This is considered a critical vulnerability requiring immediate attention.
Is there a patch for CVE-2021-1609?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Small Business Rv Series Router Firmware, Cisco Small Business Rv340, Cisco Small Business Rv340W, Cisco Small Business Rv345, Cisco Small Business Rv345P.