Details of VAR-201904-0413

ID

VAR-201904-0413

CVE

CVE-2019-1827

TITLE

Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Router Vulnerable to cross-site scripting

Trust: 0.8

sources: JVNDB: JVNDB-2019-003274

DESCRIPTION

A vulnerability in the Online Help web service of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an unauthenticated, remote attacker to conduct a reflected cross-site scripting (XSS) attack against a user of the service. The vulnerability exists because the Online Help web service of an affected device insufficiently validates user-supplied input. An attacker could exploit this vulnerability by persuading a user of the service to click a malicious link. A successful exploit could allow the attacker to execute arbitrary script code in the context of the affected service or access sensitive browser-based information.This vulnerability affects Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers running firmware releases prior to 1.4.2.22. The vulnerability stems from the lack of proper verification of client data by WEB applications. Attackers can use this vulnerability to execute client code. This may allow the attacker to steal cookie-based authentication credentials and launch other attacks. This issue being tracked by Cisco Bug ID CSCvp09589

Trust: 2.43

sources: NVD: CVE-2019-1827 // JVNDB: JVNDB-2019-003274 // CNVD: CNVD-2020-22327 // BID: 107776

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2020-22327

AFFECTED PRODUCTS

vendor:	cisco	model:	rv325	scope:	lt	version:	1.4.2.22	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	lt	version:	1.4.2.22	Trust: 1.0
vendor:	cisco	model:	rv320 dual gigabit wan vpn router	scope:	lt	version:	1.4.2.22	Trust: 0.8
vendor:	cisco	model:	rv325 dual gigabit wan vpn router	scope:	lt	version:	1.4.2.22	Trust: 0.8
vendor:	cisco	model:	small business rv320	scope:	lt	version:	1.4.2.22	Trust: 0.6
vendor:	cisco	model:	small business rv325	scope:	lt	version:	1.4.2.22	Trust: 0.6
vendor:	cisco	model:	small business rv series routers	scope:	eq	version:	1.4.2.20	Trust: 0.3
vendor:	cisco	model:	small business rv series routers	scope:	eq	version:	1.4.2.17	Trust: 0.3
vendor:	cisco	model:	small business rv series routers	scope:	eq	version:	1.4.2.15	Trust: 0.3
vendor:	cisco	model:	small business rv series routers	scope:	eq	version:	1.4.2.14	Trust: 0.3
vendor:	cisco	model:	small business rv series routers	scope:	ne	version:	1.4.2.22	Trust: 0.3

sources: CNVD: CNVD-2020-22327 // BID: 107776 // JVNDB: JVNDB-2019-003274 // NVD: CVE-2019-1827

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2019-1827
value:	MEDIUM
Trust: 1.0
ykramarz@cisco.com:	CVE-2019-1827
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2019-1827
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2020-22327
value:	MEDIUM
Trust: 0.6
CNNVD:	CNNVD-201904-256
value:	MEDIUM
Trust: 0.6

nvd@nist.gov:	CVE-2019-1827
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2020-22327
severity:	MEDIUM
baseScore:	4.3
vectorString:	AV:N/AC:M/AU:N/C:N/I:P/A:N
accessVector:	NETWORK
accessComplexity:	MEDIUM
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	PARTIAL
availabilityImpact:	NONE
exploitabilityScore:	8.6
impactScore:	2.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2019-1827
baseSeverity:	MEDIUM
baseScore:	6.1
vectorString:	CVSS:3.0/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	REQUIRED
scope:	CHANGED
confidentialityImpact:	LOW
integrityImpact:	LOW
availabilityImpact:	NONE
exploitabilityScore:	2.8
impactScore:	2.7
version:	3.0
Trust: 2.8

sources: CNVD: CNVD-2020-22327 // JVNDB: JVNDB-2019-003274 // CNNVD: CNNVD-201904-256 // NVD: CVE-2019-1827 // NVD: CVE-2019-1827

PROBLEMTYPE DATA

problemtype:

CWE-79

Trust: 1.8

sources: JVNDB: JVNDB-2019-003274 // NVD: CVE-2019-1827

THREAT TYPE

remote

Trust: 0.6

sources: CNNVD: CNNVD-201904-256

TYPE

XSS

Trust: 0.6

sources: CNNVD: CNNVD-201904-256

CONFIGURATIONS

sources: JVNDB: JVNDB-2019-003274

PATCH

title:	cisco-sa-20190404-rv-xss	url:	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190404-rv-xss	Trust: 0.8
title:	Patch for Cisco Small Business RV320 and Cisco Small Business RV325 Cross-Site Scripting Vulnerabilities	url:	https://www.cnvd.org.cn/patchInfo/show/213485	Trust: 0.6
title:	Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers Fixes for cross-site scripting vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=91109	Trust: 0.6

sources: CNVD: CNVD-2020-22327 // JVNDB: JVNDB-2019-003274 // CNNVD: CNNVD-201904-256

EXTERNAL IDS

db:	NVD	id:	CVE-2019-1827	Trust: 3.3
db:	BID	id:	107776	Trust: 1.9
db:	JVNDB	id:	JVNDB-2019-003274	Trust: 0.8
db:	CNVD	id:	CNVD-2020-22327	Trust: 0.6
db:	AUSCERT	id:	ESB-2019.1160	Trust: 0.6
db:	CNNVD	id:	CNNVD-201904-256	Trust: 0.6

sources: CNVD: CNVD-2020-22327 // BID: 107776 // JVNDB: JVNDB-2019-003274 // CNNVD: CNNVD-201904-256 // NVD: CVE-2019-1827

REFERENCES

url:	http://www.securityfocus.com/bid/107776	Trust: 2.2
url:	https://nvd.nist.gov/vuln/detail/cve-2019-1827	Trust: 2.0
url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20190404-rv-xss	Trust: 1.9
url:	http://www.cisco.com/	Trust: 0.9
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2019-1827	Trust: 0.8
url:	https://www.auscert.org.au/bulletins/78506	Trust: 0.6

sources: CNVD: CNVD-2020-22327 // BID: 107776 // JVNDB: JVNDB-2019-003274 // CNNVD: CNNVD-201904-256 // NVD: CVE-2019-1827

CREDITS

Security Researcher John C. Hennessy-ReCar .,Cisco

Trust: 0.6

sources: CNNVD: CNNVD-201904-256

SOURCES

db:	CNVD	id:	CNVD-2020-22327
db:	BID	id:	107776
db:	JVNDB	id:	JVNDB-2019-003274
db:	CNNVD	id:	CNNVD-201904-256
db:	NVD	id:	CVE-2019-1827

LAST UPDATE DATE

2024-08-14T14:56:56.277000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2020-22327	date:	2020-04-12T00:00:00
db:	BID	id:	107776	date:	2019-04-04T00:00:00
db:	JVNDB	id:	JVNDB-2019-003274	date:	2019-05-14T00:00:00
db:	CNNVD	id:	CNNVD-201904-256	date:	2019-04-19T00:00:00
db:	NVD	id:	CVE-2019-1827	date:	2019-10-09T23:48:16.113

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2020-22327	date:	2020-04-12T00:00:00
db:	BID	id:	107776	date:	2019-04-04T00:00:00
db:	JVNDB	id:	JVNDB-2019-003274	date:	2019-05-14T00:00:00
db:	CNNVD	id:	CNNVD-201904-256	date:	2019-04-04T00:00:00
db:	NVD	id:	CVE-2019-1827	date:	2019-04-04T16:29:03.337