CVE-2022-20700 - Cisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability

CVE ID:CVE-2022-20700

Project:Cisco

Product:Small Business RV160, RV260, RV340, and RV345 Series Routers

Date Added:2022-03-03Due Date:2022-03-17

Vulnerability Name

Cisco Small Business RV Series Routers Stack-based Buffer Overflow Vulnerability

Description

A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).

Known To Be Used in Ransomware Campaigns?

Unknown

Action

Apply updates per vendor instructions.

Additional Notes

https://nvd.nist.gov/vuln/detail/CVE-2022-20700