CVE-2023-20250

CVSS 3.1 Score 7.2 of 10 (high)

Details

Published Sep 6, 2023
Updated: Jan 25, 2024
CWE ID 787
CWE ID 121

Summary

CVE-2023-20250 is a vulnerability that affects the web-based management interface of Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers. It allows an authenticated remote attacker to execute arbitrary code on the affected device. The vulnerability occurs due to improper validation of requests sent to the management interface. To exploit this vulnerability, the attacker needs valid Administrator credentials. The potential danger is that an attacker could gain root privileges on the affected device and execute arbitrary code, potentially leading to unauthorized access or control over the device.

Share

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-20250 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options