Details of VAR-202410-0270

ID

VAR-202410-0270

CVE

CVE-2024-20519

TITLE

Out-of-bounds write vulnerability in multiple Cisco Systems products

Trust: 0.8

sources: JVNDB: JVNDB-2024-010013

DESCRIPTION

A vulnerability in the web-based management interface of Cisco Small Business RV042, RV042G, RV320, and RV325 Routers could allow an authenticated, Administrator-level, remote attacker to execute arbitrary code as the root user. To exploit this vulnerability, an attacker would need to have valid Administrator credentials on the affected device.   This vulnerability is due to improper validation of user-supplied input in the web-based management interface. An attacker could exploit this vulnerability by sending crafted HTTP requests to an affected device. A successful exploit could allow the attacker to execute arbitrary code on the underlying operating system as the root user. RV042 Dual WAN VPN firmware, RV042G Dual Gigabit WAN VPN firmware, Cisco RV320 Dual Gigabit WAN VPN Multiple Cisco Systems products, including router firmware, contain an out-of-bounds write vulnerability.Information is obtained, information is tampered with, and service operation is interrupted. (DoS) It may be in a state. Cisco Small Business Routers is a router device of Cisco

Trust: 2.16

sources: NVD: CVE-2024-20519 // JVNDB: JVNDB-2024-010013 // CNVD: CNVD-2024-45301

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2024-45301

AFFECTED PRODUCTS

vendor:	cisco	model:	rv320	scope:	eq	version:	3.0.0.19-tm	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.3.1.12	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.4.2.19	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.3.1.10	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.5.1.11	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.0.2.03	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.4.2.20	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.3.12.19-tm	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.2.1.13	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.0.1.17	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	3.0.0.1-tm	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	4.0.2.08-tm	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.3.2.02	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	4.2.1.02	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	4.1.1.01	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.1.1.06	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	3.0.2.01-tm	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.4.2.20	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.3.12.19-tm	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	4.2.3.10	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	4.0.0.7	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	4.2.3.08	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.3.1.12	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	4.2.2.08	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	4.1.0.02-tm	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	4.0.2.08-tm	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	4.1.1.01	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.2.1.13	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.5.1.05	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	4.2.3.10	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	4.0.4.02-tm	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	4.2.3.06	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	4.2.3.07	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.4.2.19	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	4.0.3.03-tm	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.5.1.11	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	4.2.3.08	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.2.1.14	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.4.2.17	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.3.12.6-tm	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.5.1.13	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	4.2.3.09	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	4.0.4.02-tm	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	4.2.1.02	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.1.1.06	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.4.2.22	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.5.1.05	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.1.0.09	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.3.13.02-tm	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.3.12.6-tm	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	4.2.3.06	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.4.2.15	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	4.2.2.08	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.5.1.13	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	4.2.3.03	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	3.0.0.19-tm	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.2.1.14	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.1.1.19	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	3.0.0.1-tm	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.3.1.10	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.0.2.03	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.4.2.15	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	3.0.0.19-tm	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.0.1.17	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	4.2.3.14	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	4.2.3.07	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.1.0.09	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.1.1.19	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	3.0.2.01-tm	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	4.0.3.03-tm	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.3.2.02	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.4.2.17	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	4.0.0.7	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.4.2.20	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	4.2.3.09	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	4.0.2.08-tm	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.3.12.19-tm	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	4.2.3.14	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	3.0.2.01-tm	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.4.2.22	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	4.1.0.02-tm	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.5.1.05	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	4.1.1.01	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	4.2.3.10	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	4.0.0.7	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	4.2.3.03	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.4.2.19	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.5.1.11	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.4.2.22	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	4.0.2.08-tm	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.3.1.12	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.3.1.10	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.0.2.03	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	4.2.1.02	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.2.1.13	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.0.1.17	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.1.1.06	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.4.2.19	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	4.2.3.10	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.5.1.11	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.3.2.02	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	4.0.4.02-tm	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.5.1.13	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.3.1.12	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	4.2.2.08	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.4.2.20	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.3.12.19-tm	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	4.2.1.02	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.3.13.02-tm	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.3.12.6-tm	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.1.1.06	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.2.1.13	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	4.2.3.08	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	4.1.0.02-tm	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	3.0.0.1-tm	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.3.2.02	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	4.1.1.01	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.4.2.15	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	4.2.2.08	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.1.1.19	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	4.2.3.07	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	4.0.3.03-tm	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.5.1.13	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	4.2.3.08	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	3.0.0.19-tm	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.4.2.17	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	4.1.0.02-tm	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	4.2.3.06	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	4.2.3.09	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.2.1.14	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	4.2.3.14	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	3.0.0.1-tm	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	4.2.3.07	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	4.0.3.03-tm	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.4.2.15	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.5.1.05	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	4.0.4.02-tm	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.4.2.17	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	1.1.1.19	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	4.2.3.06	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	3.0.2.01-tm	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	4.2.3.09	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	4.2.3.03	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.1.0.09	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.2.1.14	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.3.13.02-tm	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	4.0.0.7	Trust: 1.0
vendor:	cisco	model:	rv320	scope:	eq	version:	1.3.12.6-tm	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	1.4.2.22	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.3.1.10	Trust: 1.0
vendor:	cisco	model:	rv325	scope:	eq	version:	4.2.3.14	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.0.2.03	Trust: 1.0
vendor:	cisco	model:	rv042	scope:	eq	version:	4.2.3.03	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.0.1.17	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.1.0.09	Trust: 1.0
vendor:	cisco	model:	rv042g	scope:	eq	version:	1.3.13.02-tm	Trust: 1.0
vendor:	シスコシステムズ	model:	rv042g dual gigabit wan vpn	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	rv042 dual wan vpn	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco rv325 dual gigabit wan vpn ルータ	scope:	-	version:	-	Trust: 0.8
vendor:	シスコシステムズ	model:	cisco rv320 dual gigabit wan vpn ルータ	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	small business rv042	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	small business rv042g	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	small business rv320	scope:	-	version:	-	Trust: 0.6
vendor:	cisco	model:	small business rv325	scope:	-	version:	-	Trust: 0.6

sources: CNVD: CNVD-2024-45301 // JVNDB: JVNDB-2024-010013 // NVD: CVE-2024-20519

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2024-20519
value:	CRITICAL
Trust: 1.0
ykramarz@cisco.com:	CVE-2024-20519
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2024-20519
value:	CRITICAL
Trust: 0.8
CNVD:	CNVD-2024-45301
value:	HIGH
Trust: 0.6

CNVD:	CNVD-2024-45301
severity:	HIGH
baseScore:	8.3
vectorString:	AV:N/AC:L/AU:M/C:C/I:C/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	MULTIPLE
confidentialityImpact:	COMPLETE
integrityImpact:	COMPLETE
availabilityImpact:	COMPLETE
exploitabilityScore:	6.4
impactScore:	10.0
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6

nvd@nist.gov:	CVE-2024-20519
baseSeverity:	CRITICAL
baseScore:	9.1
vectorString:	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	CHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	2.3
impactScore:	6.0
version:	3.1
Trust: 1.0
ykramarz@cisco.com:	CVE-2024-20519
baseSeverity:	MEDIUM
baseScore:	6.5
vectorString:	CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:N
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	NONE
exploitabilityScore:	1.2
impactScore:	5.2
version:	3.1
Trust: 1.0
NVD:	CVE-2024-20519
baseSeverity:	CRITICAL
baseScore:	9.1
vectorString:	CVSS:3.0/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
attackVector:	NETWORK
attackComplexity:	LOW
privilegesRequired:	HIGH
userInteraction:	NONE
scope:	CHANGED
confidentialityImpact:	HIGH
integrityImpact:	HIGH
availabilityImpact:	HIGH
exploitabilityScore:	NONE
impactScore:	NONE
version:	3.0
Trust: 0.8

sources: CNVD: CNVD-2024-45301 // JVNDB: JVNDB-2024-010013 // NVD: CVE-2024-20519 // NVD: CVE-2024-20519

PROBLEMTYPE DATA

problemtype:	CWE-787	Trust: 1.0
problemtype:	CWE-121	Trust: 1.0
problemtype:	Stack-based buffer overflow (CWE-121) [ others ]	Trust: 0.8
problemtype:	Out-of-bounds writing (CWE-787) [NVD evaluation ]	Trust: 0.8

sources: JVNDB: JVNDB-2024-010013 // NVD: CVE-2024-20519

PATCH

title:	cisco-sa-sb-rv04x_rv32x_vulns-yJ2OSDhV	url:	https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-rv04x_rv32x_vulns-yJ2OSDhV	Trust: 0.8
title:	Patch for Cisco Small Business WEB Interface Remote Command Execution Vulnerability	url:	https://www.cnvd.org.cn/patchInfo/show/618111	Trust: 0.6

sources: CNVD: CNVD-2024-45301 // JVNDB: JVNDB-2024-010013

EXTERNAL IDS

db:	NVD	id:	CVE-2024-20519	Trust: 3.2
db:	JVNDB	id:	JVNDB-2024-010013	Trust: 0.8
db:	CNVD	id:	CNVD-2024-45301	Trust: 0.6

sources: CNVD: CNVD-2024-45301 // JVNDB: JVNDB-2024-010013 // NVD: CVE-2024-20519

REFERENCES

url:	https://nvd.nist.gov/vuln/detail/cve-2024-20519	Trust: 1.4
url:	https://sec.cloudapps.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-sb-rv04x_rv32x_vulns-yj2osdhv	Trust: 1.0

sources: CNVD: CNVD-2024-45301 // JVNDB: JVNDB-2024-010013 // NVD: CVE-2024-20519

SOURCES

db:	CNVD	id:	CNVD-2024-45301
db:	JVNDB	id:	JVNDB-2024-010013
db:	NVD	id:	CVE-2024-20519

LAST UPDATE DATE

2024-11-20T22:56:38.242000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2024-45301	date:	2024-11-19T00:00:00
db:	JVNDB	id:	JVNDB-2024-010013	date:	2024-10-09T02:10:00
db:	NVD	id:	CVE-2024-20519	date:	2024-10-08T13:50:35.507

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2024-45301	date:	2024-11-14T00:00:00
db:	JVNDB	id:	JVNDB-2024-010013	date:	2024-10-09T00:00:00
db:	NVD	id:	CVE-2024-20519	date:	2024-10-02T17:15:18.837