Rewterz

Rewterz Threat Advisory – CVE-2021-1479 – Cisco SD-WAN vManage Software buffer overflow

April 8, 2021
Rewterz

Rewterz Threat Advisory – CVE-2021-29154 – Linux Kernel privilege escalation

April 9, 2021

Rewterz Threat Advisory – CVE-2021-1459 – Cisco Small Business Routers command execution

Severity

High

Analysis Summary

CVE-2021-1459

Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers could allow a remote attacker to execute arbitrary commands on the system, caused by improper validation of user-supplied input in the web-based management interface. By sending specially crafted HTTP requests, an attacker could exploit this vulnerability to execute arbitrary commands on the system with root privileges.

Impact

Unauthorized Access

Affected Vendors

Cisco

Affected Products

  • Cisco Small Business RV130 Series VPN routers
  • Cisco Small Business RV215W Wireless-N VPN Router
  • Cisco Small Business RV110W Wireless-N VPN Firewall
  • Cisco Small Business RV130W Wireless-N Multifunction VPN Router

Remediation

Refer to Cisco advisory for the complete list of affected products and their respective patches.

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-rce-q3rxHnvm

Reading this advisory was a good start.

Make it a habit.

Rewterz publishes threat advisories ahead of mainstream cybersecurity media, informed by an AI-Native Autonomous SOC that sees regional threat actor activity in real time. Subscribe to receive each new advisory as it publishes, plus a monthly Middle East threat landscape brief drawn from our own SOC telemetry. For teams evaluating their detection coverage, a 30-minute consultation with a senior analyst is also available, at your pace, when you're ready.