CVE-2014-0683

Cisco RV110W RV215W CVR100W - Authentication Replay Attack via Modified Request

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2014-0683. PoCs published by RySh.

AI-analyzed exploit summary This exploit targets Cisco RV110W routers to disclose admin credentials and execute arbitrary OS commands via a command injection vulnerability in the diagnostics functionality. It leverages a session fixation and improper input validation to achieve RCE.

Description

The web management interface on the Cisco RV110W firewall with firmware 1.2.0.9 and earlier, RV215W router with firmware 1.1.0.5 and earlier, and CVR100W router with firmware 1.0.1.19 and earlier does not prevent replaying of modified authentication requests, which allows remote attackers to obtain administrative access by leveraging the ability to intercept requests, aka Bug IDs CSCul94527, CSCum86264, and CSCum86275.

Exploits (1)

exploitdb WORKING POC
by RySh · pythonremotehardware
https://www.exploit-db.com/exploits/45986

This exploit targets Cisco RV110W routers to disclose admin credentials and execute arbitrary OS commands via a command injection vulnerability in the diagnostics functionality. It leverages a session fixation and improper input validation to achieve RCE.

Classification
Working Poc 95%
Attack Type
Rce
Complexity
Moderate
Reliability
Reliable
Target: Cisco RV110W 1.1.0.9
No auth needed
Prerequisites: Network access to the target device · Python 2.x environment
devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (2)

Core 2
Core References
Exploit, Third Party Advisory exploit x_refsource_exploit-db
https://www.exploit-db.com/exploits/45986/

Scores

EPSS 0.1035
EPSS Percentile 95.1%

Details

CWE
CWE-255
Status published
Products (6)
cisco/cvr100w
cisco/cvr100w_firmware < 1.0.1.19
cisco/rv110w
cisco/rv110w_firmware < 1.2.0.9
cisco/rv215w
cisco/rv215w_firmware < 1.1.0.5
Published Mar 06, 2014
Tracked Since Feb 18, 2026