CVE-2023-20073

MEDIUM EXPLOITED NUCLEI

Cisco RV340-345 - File Upload

Title source: llm

Description

A vulnerability in the web-based management interface of Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an unauthenticated, remote attacker to upload arbitrary files to an affected device. This vulnerability is due to insufficient authorization enforcement mechanisms in the context of file uploads. An attacker could exploit this vulnerability by sending a crafted HTTP request to an affected device. A successful exploit could allow the attacker to upload arbitrary files to the affected device.

Exploits (1)

nomisec WORKING POC 1 stars

by RegularITCat · remote

https://github.com/RegularITCat/CVE-2023-20073

View Code ZIP pw:eip

Nuclei Templates (1)

Cisco VPN Routers - Unauthenticated Arbitrary File Upload

CRITICALVERIFIEDby princechaddha,ritikchaddha

FOFA:

app="CISCO-RV340" || app="CISCO-RV340W" || app="CISCO-RV345" || app="CISCO-RV345P" || app="cisco-rv340" || app="cisco-rv340w" || app="cisco-rv345" || app="cisco-rv345p"

References (1)

[Vendor Advisory] https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-rv-afu-EXxwA65V

Scores

CVSS v3 5.3

EPSS 0.9134

EPSS Percentile 99.7%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

Details

VulnCheck KEV 2023-11-15

CWE

CWE-434

Status published

Products (4)

cisco/rv340_firmware < 1.0.03.29

cisco/rv340w_firmware < 1.0.03.29

cisco/rv345_firmware < 1.0.03.29

cisco/rv345p_firmware < 1.0.03.29

Published Apr 05, 2023

Tracked Since Feb 18, 2026