Intrusion PreventionCisco.RVseriesRouter.vpn_account.DoS
Description
This indicates an attack attempt to exploit a Denial of Service Vulnerability in the web management interface of RV-series Cisco Routers.
The vulnerability is caused by a lack of user input validation when handling a maliciously crafted request. A remote attacker may exploit this to cause the device to reload and create a Denial of Service condition.
Affected Products
- RV110W firmware version 1.2.1.7-1.2.1.8, 1.3.1.7
- RV130 firmware version 1.2.2.8, 1.3.1.7
- RV130W firmware version 1.2.2.8, 1.3.1.7
- RV215W firmware version 1.2.2.8, 1.3.1.7
Impact
Denial of Service: Remote attackers can crash vulnerable systems.
Recommended Actions
Cisco has not released software updates or workarounds that address this vulnerability.
Telemetry
Coverage
| IPS (Regular DB) | |
| IPS (Extended DB) |
Version Updates
| Date | Version | Detail |
|---|---|---|
| 2024-04-30 | 27.777 | Name:CGI. Cisco. RVseriesRouter. vpn_account. DoS:Cisco. RVseriesRouter. vpn_account. DoS |
| 2024-04-24 | 27.774 |
| ID | 55095 |
| Created | Apr 16, 2024 |
| Updated | Apr 29, 2024 |
| Risk |
|
| CVE ID | CVE-2021-1167 |
| Exploit Prediction Score | 0.35% |
| Default Action | pass |
| Active | |
| Affected OS | Other |
| Affected App | CGI_app |