CyberSec.Space Logo
Back to CVE Browser

CVE-2016-1396

MEDIUM
6.1
CVSS Severity Score
EPSS Score0.1500%
EPSS Percentile27.85th
PublishedJun 19, 2016
Last ModifiedMay 6, 2026

Vulnerability Description

Cross-site scripting (XSS) vulnerability in the web-based management interface on Cisco RV110W devices with firmware before 1.2.1.7, RV130W devices with firmware before 1.0.3.16, and RV215W devices with firmware before 1.3.0.8 allows remote attackers to inject arbitrary web script or HTML via a crafted parameter, aka Bug ID CSCux82583.

Affected Platforms (CPE)

πŸ’»
Cisco

Rv130w Wireless N Multifunction Vpn Router Firmware

= 1.0.0.21
πŸ’»
Cisco

Rv130w Wireless N Multifunction Vpn Router Firmware

= 1.0.1.3
πŸ’»
Cisco

Rv130w Wireless N Multifunction Vpn Router Firmware

= 1.0.2.7
πŸ’»
Cisco

Rv110w Wireless N Vpn Firewall Firmware

= 1.1.0.9
πŸ’»
Cisco

Rv110w Wireless N Vpn Firewall Firmware

= 1.2.0.9
πŸ’»
Cisco

Rv110w Wireless N Vpn Firewall Firmware

= 1.2.0.10
πŸ’»
Cisco

Rv110w Wireless N Vpn Firewall Firmware

= 1.2.1.4
πŸ’»
Cisco

Rv215w Wireless N Vpn Router Firmware

= 1.1.0.5
πŸ’»
Cisco

Rv215w Wireless N Vpn Router Firmware

= 1.1.0.6
πŸ’»
Cisco

Rv215w Wireless N Vpn Router Firmware

= 1.2.0.14
πŸ’»
Cisco

Rv215w Wireless N Vpn Router Firmware

= 1.2.0.15
πŸ’»
Cisco

Rv215w Wireless N Vpn Router Firmware

= 1.3.0.7

References & Advisories

πŸ”— http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160615-rv1
πŸ”— http://www.securitytracker.com/id/1036114
πŸ”— http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160615-rv1
πŸ”— http://www.securitytracker.com/id/1036114

Related Vulnerabilities

CVE-2026-53430

Improper Handling of Highly Compressed Data (Data Amplification) vulnerability in elixir-grpc grpc (GRPC.Compressor.Gzip, GRPC.Mes...

CVE-2026-48854

Allocation of Resources Without Limits or Throttling vulnerability in elixir-grpc grpc allows unauthenticated attackers to exhaust...

CVE-2026-48853

Deserialization of Untrusted Data and Allocation of Resources Without Limits or Throttling vulnerabilities in elixir-grpc grpc all...

CVE-2026-487237.8

The browserstack-cypress-cli is BrowserStack's CLI which allows users to run Cypress tests on BrowserStack. Versions prior to 1.36...