CVE-2021-1473

MEDIUM EXPLOITED IN THE WILD

Cisco RV340 RV340W RV345 RV345P Firmware < 1.0.03.21 - Authentication Bypass and Remote Code Execution

Title source: llm

Exploitation Summary

CVE-2021-1473 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io).

Description

Multiple vulnerabilities exist in the web-based management interface of Cisco Small Business RV Series Routers. A remote attacker could execute arbitrary commands or bypass authentication and upload files on an affected device. For more information about these vulnerabilities, see the Details section of this advisory.

References (3)

Core 3

Core References

Vendor Advisory vendor-advisory x_refsource_cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-rv-bypass-inject-Rbhgvfdx

Mailing List, Third Party Advisory mailing-list x_refsource_fulldisc

http://seclists.org/fulldisclosure/2021/Apr/39

Exploit, Third Party Advisory, VDB Entry x_refsource_misc

http://packetstormsecurity.com/files/162238/Cisco-RV-Authentication-Bypass-Code-Execution.html

Scores

CVSS v3 5.3

EPSS 0.9107

EPSS Percentile 99.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment

Exploitation poc

Automatable yes

Technical Impact partial

Details

VulnCheck KEV 2021-10-07

InTheWild.io 2024-09-18

CWE

CWE-119 CWE-78

Status published

Products (4)

cisco/rv340_firmware < 1.0.03.21

cisco/rv340w_firmware < 1.0.03.21

cisco/rv345_firmware < 1.0.03.21

cisco/rv345p_firmware < 1.0.03.21

Published Apr 08, 2021

Tracked Since Feb 18, 2026