CVE-2015-6396

HIGH

Cisco RV110W, RV130W, and RV215W - OS Command Injection via CLI Command Parser

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2015-6396. PoCs published by RySh.

AI-analyzed exploit summary This exploit targets Cisco RV110W routers to disclose admin credentials and execute arbitrary OS commands via a command injection vulnerability in the diagnostics functionality. It leverages a session fixation and improper input validation to achieve RCE.

Description

The CLI command parser on Cisco RV110W, RV130W, and RV215W devices allows local users to execute arbitrary shell commands as an administrator via crafted parameters, aka Bug IDs CSCuv90134, CSCux58161, and CSCux73567.

Exploits (1)

exploitdb WORKING POC

by RySh · pythonremotehardware

https://www.exploit-db.com/exploits/45986

View Code ZIP pw:eip

This exploit targets Cisco RV110W routers to disclose admin credentials and execute arbitrary OS commands via a command injection vulnerability in the diagnostics functionality. It leverages a session fixation and improper input validation to achieve RCE.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Cisco RV110W 1.1.0.9

No auth needed

Prerequisites: Network access to the target device · Python 2.x environment

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Mitigation, Vendor Advisory vendor-advisory x_refsource_cisco

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160803-rv110_130w1

Exploit, Third Party Advisory exploit x_refsource_exploit-db

https://www.exploit-db.com/exploits/45986/

Third Party Advisory, VDB Entry vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/92269

Third Party Advisory, VDB Entry vdb-entry x_refsource_sectrack

http://www.securitytracker.com/id/1036528

Scores

CVSS v3 7.8

EPSS 0.0194

EPSS Percentile 77.5%

Attack Vector LOCAL

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE

CWE-78

Status published

Products (3)

cisco/rv110w_wireless-n_vpn_firewall_firmware

cisco/rv130w_wireless-n_multifunction_vpn_router_firmware

cisco/rv215w_wireless-n_vpn_router_firmware

Published Aug 08, 2016

Tracked Since Feb 18, 2026