Cisco Will Not Patch Important RCE Flaw Affecting Finish-of-Life Enterprise Routers


Networking tools main Cisco Techniques has stated it doesn’t plan to repair a crucial safety vulnerability affecting a few of its Small Enterprise routers, as a substitute urging customers to switch the gadgets.

The bug, tracked as CVE-2021-1459, is rated with a CVSS rating of 9.8 out of 10, and impacts RV110W VPN firewall and Small Enterprise RV130, RV130W, and RV215W routers, permitting an unauthenticated, distant attacker to execute arbitrary code on an affected equipment.

password auditor

The flaw, which stems from improper validation of user-supplied enter within the web-based administration interface, may very well be exploited by a malicious actor to ship specially-crafted HTTP requests to the focused system and obtain distant code execution.

“A profitable exploit might permit the attacker to execute arbitrary code as the foundation person on the underlying working system of the affected system,” Cisco said in its advisory.

Safety researcher Treck Zhou has been credited with reporting the vulnerability. Though the corporate famous there’s been no proof of lively exploitation makes an attempt within the wild, it does not intend to launch a patch or make any workarounds out there, citing that the merchandise have reached end-of-life.

password auditor

“The Cisco Small Enterprise RV110W, RV130, RV130W, and RV215W Routers have entered the end-of-life course of,” the agency stated. “Clients are inspired emigrate to the Cisco Small Enterprise RV132W, RV160, or RV160W Routers.”

Individually, Cisco has additionally released software updates to handle a number of vulnerabilities in Cisco SD-WAN vManage Software program (CVE-2021-1137, CVE-2021-1479, and CVE-2021-1480) that would allow an unauthenticated, distant attacker to execute arbitrary code or permit an authenticated, native attacker to realize escalated privileges on an affected system.

A consequence of a buffer overflow situation, CVE-2021-1479 is rated 9.8 in severity, and a profitable exploitation of which “might permit the attacker to execute arbitrary code on the underlying working system with root privileges.”


Source link