CVE-2018-0425

CVE-2018-0425: Cisco RV110W, RV130W, and RV215W Routers Management Interface Information Disclosure Vulnerability

Vendor Cisco

Product Cisco RV130W Wireless-N Multifunction VPN Router Firmware

Weakness CWE-200 · Info exposure

Published October 5, 2018

Last update November 26, 2024

View on NVD All CVEs

CVSS base score

—

What the vulnerability does

01Description

A vulnerability in the web-based management interface of the Cisco RV110W Wireless-N VPN Firewall, Cisco RV130W Wireless-N Multifunction VPN Router, and Cisco RV215W Wireless-N VPN Router could allow an unauthenticated, remote attacker to gain access to sensitive information. The vulnerability is due to improper access control to files within the web-based management interface. An attacker could exploit this vulnerability by sending malicious requests to a targeted device. A successful exploit could allow the attacker to gain access to sensitive configuration information, including user authentication credentials.

Key dates

02Disclosure timeline

October 5, 2018 CVE published

November 26, 2024 Record updated

External resources

03References

NVD — National Vulnerability Database https://nvd.nist.gov/vuln/detail/CVE-2018-0425

Related vulnerabilities

CVE-2018-0425: Cisco RV110W, RV130W, and RV215W Routers Management Interface Information Disclosure Vulnerability

01Description

02Disclosure timeline

03References

04Related CVE