CVE-2014-2179

MEDIUM

5.0

CVSS Severity Score

EPSS Score0.0610%

EPSS Percentile30.88th

Published2014年11月7日

Last Modified2026年5月6日

Vulnerability Description

The Cisco RV router firmware on RV220W devices, before 1.0.5.9 on RV120W devices, and before 1.0.4.14 on RV180 and RV180W devices allows remote attackers to upload files to arbitrary locations via a crafted HTTP request, aka Bug ID CSCuh86998.

Affected Platforms (CPE)

💻

Cisco

Rv180 Firmware

<= 1.0.3.10

🔌

Cisco

Rv180

All versions

🔌

Cisco

Rv180w

All versions

💻

Cisco

Rv120w Firmware

<= 1.0.5.8

🔌

Cisco

Rv120w

All versions

💻

Cisco

Rv220w Firmware

<= 1.0.5.8

🔌

Cisco

Rv220w

All versions

References & Advisories

🔗 http://packetstormsecurity.com/files/128992/Cisco-RV-Overwrite-CSRF-Command-Execution.html

🔗 http://seclists.org/fulldisclosure/2014/Nov/6

🔗 http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20141105-rv

🔗 http://www.securityfocus.com/archive/1/533917/100/0/threaded

🔗 http://www.securitytracker.com/id/1031171

🔗 https://exchange.xforce.ibmcloud.com/vulnerabilities/98499

🔗 http://packetstormsecurity.com/files/128992/Cisco-RV-Overwrite-CSRF-Command-Execution.html

🔗 http://seclists.org/fulldisclosure/2014/Nov/6

Vulnerability Description

Affected Platforms (CPE)

Rv180 Firmware

Rv180

Rv180w

Rv120w Firmware

Rv120w

Rv220w Firmware

Rv220w

References & Advisories

相关漏洞威胁