CVE-2011-1645

The web management interface on the Cisco RVS4000 Gigabit Security Router with software 1.x before 1.3.3.4 and 2.x before 2.0.2.7, and the WRVS4400N Gigabit Security Router with software before 2.0.2.1, allows remote attackers to read the backup configuration file, and consequently execute arbitrary code, via unspecified vectors, aka Bug ID CSCtn23871.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
9.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:C/A:C
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 83%
VendorProductVersion
ciscorvs4000_software
1.3.0.5
ciscorvs4000_software
1.3.1.0
ciscorvs4000_software
1.3.2.0
ciscorvs4000_software
2.0.0.3
ciscowrvs4400n
1.0
ciscowrvs4400n
1.1
ciscowrvs4400n_software
1.3.0.5
ciscowrvs4400n_software
1.3.1.0
ciscowrvs4400n_software
1.3.2.0
ciscowrvs4400n_software
2.0.0.3
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b7f190.shtml
http://www.securityfocus.com/bid/47988
http://www.securitytracker.com/id?1025565
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b7f190.shtml
http://www.securityfocus.com/bid/47988
http://www.securitytracker.com/id?1025565