Vulnerabilities > Cisco > Rv134W Firmware > Critical

DATE CVE VULNERABILITY TITLE RISK
2018-02-08 CVE-2018-0125 Improper Input Validation vulnerability in Cisco Rv132W Firmware and Rv134W Firmware
A vulnerability in the web interface of the Cisco RV132W ADSL2+ Wireless-N VPN and RV134W VDSL2 Wireless-AC VPN Routers could allow an unauthenticated, remote attacker to execute arbitrary code and gain full control of an affected system, including issuing commands with root privileges.
network
low complexity
cisco CWE-20
critical
9.8
2018-02-08 CVE-2018-0127 Missing Authentication for Critical Function vulnerability in Cisco Rv132W Firmware and Rv134W Firmware
A vulnerability in the web interface of Cisco RV132W ADSL2+ Wireless-N VPN Routers and Cisco RV134W VDSL2 Wireless-AC VPN Routers could allow an unauthenticated, remote attacker to view configuration parameters for an affected device, which could lead to the disclosure of confidential information.
network
low complexity
cisco CWE-306
critical
9.8