CVE-2019-1913

CRITICAL

Cisco Small Business 220 Series Smart Switches < 1.1.4.4 - Unauthenticated Remote Code Execution via Buffer Overflow

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2019-1913.

AI-analyzed exploit summary This Python script is a functional exploit for CVE-2019-1913, targeting a stack overflow vulnerability in Realtek Managed Switch Controller (RTL83xx) devices. It leverages a 'one byte read-write loop' without boundary checks in Boa/Hydra web servers, allowing remote code execution via a reverse shell.

Description

Multiple vulnerabilities in the web management interface of Cisco Small Business 220 Series Smart Switches could allow an unauthenticated, remote attacker to overflow a buffer, which then allows the execution of arbitrary code with root privileges on the underlying operating system. The vulnerabilities are due to insufficient validation of user-supplied input and improper boundary checks when reading data into an internal buffer. An attacker could exploit these vulnerabilities by sending malicious requests to the web management interface of an affected device. Depending on the configuration of the affected switch, the malicious requests must be sent via HTTP or HTTPS.

Exploits (1)

exploitdb WORKING POC

pythonremotehardware

https://www.exploit-db.com/exploits/47442

View Code ZIP pw:eip

This Python script is a functional exploit for CVE-2019-1913, targeting a stack overflow vulnerability in Realtek Managed Switch Controller (RTL83xx) devices. It leverages a 'one byte read-write loop' without boundary checks in Boa/Hydra web servers, allowing remote code execution via a reverse shell.

Classification

Working Poc 95%

Attack Type

Rce

Complexity

Moderate

Reliability

Reliable

Target: Realtek Managed Switch Controller (RTL83xx) with various vendor firmwares (e.g., Cisco Sx220, NETGEAR GS728TPv2, Zyxel GS1900-24)

No auth needed

Prerequisites: Network access to the target device · Knowledge of the target's ETag for firmware identification

MITRE ATT&CK

T1190 - Exploit Public-Facing Application T1059 - Command and Scripting Interpreter

devstral-2 · analyzed Feb 19, 2026 Full analysis →

References (2)

Core 2

Core References

Vendor Advisory vendor-advisory x_refsource_cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190806-sb220-rce

Exploit, Third Party Advisory x_refsource_misc

http://packetstormsecurity.com/files/154667/Realtek-Managed-Switch-Controller-RTL83xx-Stack-Overflow.html

Scores

CVSS v3 9.8

EPSS 0.2594

EPSS Percentile 97.7%

Attack Vector NETWORK

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable yes

Technical Impact total

Details

CWE

CWE-119

Status published

Products (11)

cisco/sf-220-24_firmware < 1.1.4.4

cisco/sf220-24p_firmware < 1.1.4.4

cisco/sf220-48_firmware < 1.1.4.4

cisco/sf220-48p_firmware < 1.1.4.4

cisco/sg220-26_firmware < 1.1.4.4

cisco/sg220-26p_firmware < 1.1.4.4

cisco/sg220-28_firmware < 1.1.4.4

cisco/sg220-28mp_firmware < 1.1.4.4

cisco/sg220-50_firmware < 1.1.4.4

cisco/sg220-50p_firmware < 1.1.4.4

... and 1 more

Published Aug 07, 2019

Tracked Since Feb 18, 2026