Cisco Small Business RV110W Wireless-N VPN Firewall Routers Use of Hard-coded Credentials Vulnerability

Summary

A vulnerability in the Telnet service of Cisco Small Business RV110W Wireless-N VPN Firewall Routers could allow an unauthenticated, remote attacker to take full control of the device with a high-privileged account.

Credit:

The information has been provided by Larryxi

The original article can be found at:https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv110w-static-cred-BMTWBWTy


Details

The vulnerability exists because a system account has a default and static password. An attacker could exploit this vulnerability by using this default account to connect to the affected system. A successful exploit could allow the attacker to gain full control of an affected device.

 

Vulnerable Systems:

Cisco Small Business RV110W Wireless-N VPN Firewall Routers

 

CVE Information:

CVE-2020-3330

 

Disclosure Timeline:
Published Date:7/16/2020

Categories: FeaturedNews