Vulnerabilities > Cisco

DATE CVE VULNERABILITY TITLE RISK
2024-10-02 CVE-2024-20517 Out-of-bounds Write vulnerability in Cisco products
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an unexpected reload of an affected device, resulting in a denial of service (DoS) condition.
network
low complexity
cisco CWE-787
6.8
2024-10-02 CVE-2024-20518 Out-of-bounds Write vulnerability in Cisco products
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to execute arbitrary code as the root user.
network
low complexity
cisco CWE-787
critical
9.1
2024-10-02 CVE-2024-20519 Out-of-bounds Write vulnerability in Cisco products
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to execute arbitrary code as the root user.
network
low complexity
cisco CWE-787
critical
9.1
2024-10-02 CVE-2024-20520 Out-of-bounds Write vulnerability in Cisco products
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to execute arbitrary code as the root user.
network
low complexity
cisco CWE-787
critical
9.1
2024-10-02 CVE-2024-20521 Out-of-bounds Write vulnerability in Cisco products
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to execute arbitrary code as the root user.
network
low complexity
cisco CWE-787
critical
9.1
2024-10-02 CVE-2024-20522 Out-of-bounds Write vulnerability in Cisco products
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an unexpected reload of an affected device, resulting in a denial of service (DoS) condition.
network
low complexity
cisco CWE-787
6.8
2024-10-02 CVE-2024-20523 Out-of-bounds Write vulnerability in Cisco products
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an unexpected reload of an affected device, resulting in a denial of service (DoS) condition.
network
low complexity
cisco CWE-787
6.8
2024-10-02 CVE-2024-20524 Out-of-bounds Write vulnerability in Cisco products
A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to cause an unexpected reload of an affected device, resulting in a denial of service (DoS) condition.
network
low complexity
cisco CWE-787
6.8
2024-09-25 CVE-2024-20414 Cross-Site Request Forgery (CSRF) vulnerability in Cisco IOS XE
A vulnerability in the web UI feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack on an affected system through the web UI. This vulnerability is due to incorrectly accepting configuration changes through the HTTP GET method.
network
low complexity
cisco CWE-352
6.5
2024-09-25 CVE-2024-20433 Out-of-bounds Write vulnerability in Cisco IOS
A vulnerability in the Resource Reservation Protocol (RSVP) feature of Cisco IOS Software and Cisco IOS XE Software could allow an unauthenticated, remote attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. This vulnerability is due to a buffer overflow when processing crafted RSVP packets.
network
low complexity
cisco CWE-787
7.5