[c-nsp] Cisco Security Advisory: Multiple Vulnerabilities in Cisco Small Business RV Series Routers
Cisco Systems Product Security Incident Response Team
psirt at cisco.com
Wed Nov 5 11:00:52 EST 2014
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Cisco Security Advisory: Multiple Vulnerabilities in Cisco Small
Business RV Series Routers
Advisory ID: cisco-sa-20141105-rv
Revision 1.0
For Public Release 2014 November 5 16:00 UTC (GMT)
+----------------------------------------------------------------------
Summary
=======
The Cisco RV120W Wireless-N VPN Firewall, Cisco RV180 VPN Router,
Cisco RV180W Wireless-N Multifunction VPN Router, and Cisco RV220W
Wireless Network Security Firewall are affected by the following
vulnerabilities:
* Cisco RV Series Routers Command Injection Vulnerability
* Cisco RV Series Routers HTTP Referer Header Vulnerability
* Cisco RV Series Routers Insecure File Upload Vulnerability
These vulnerabilities are independent of each other; a release that
is affected by one of the vulnerabilities may not be affected by the
others.
Cisco has released free software updates that address these
vulnerabilities. Workarounds that mitigate these vulnerabilities are
available.
This advisory is available at the following link:
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141105-rv
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.5 (SunOS)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=uVv4
-----END PGP SIGNATURE-----
More information about the cisco-nsp
mailing list