{"id":24210,"date":"2022-06-20T05:50:42","date_gmt":"2022-06-20T09:50:42","guid":{"rendered":"https:\/\/www.technewsday.com\/?p=24210"},"modified":"2022-06-20T05:50:42","modified_gmt":"2022-06-20T09:50:42","slug":"cisco-wont-fix-zero-day-rce-in-end-of-life-vpn-routers","status":"publish","type":"post","link":"https:\/\/technewsday.com\/staging\/cisco-wont-fix-zero-day-rce-in-end-of-life-vpn-routers\/","title":{"rendered":"Cisco Won&#8217;t Fix Zero-Day RCE in End Of Life VPN Routers"},"content":{"rendered":"<p data-ar-index=\"0\"><span style=\"font-weight: 400;\">Cisco is advising owners of end-of-life Small Business RV routers to upgrade to newer models after revealing a remote code execution vulnerability that the company will no longer patch.<\/span><\/p>\n<p data-ar-index=\"2\"><span style=\"font-weight: 400;\">The vulnerability is tracked as CVE-2022-20825 with a CVSS severity rating of 9.8 out of 10.0.<\/span><\/p>\n<p data-ar-index=\"4\"><span style=\"font-weight: 400;\">As per a Cisco security advisory, the flaw is due to insufficient user input validation of incoming HTTP packets on the affected devices.<\/span><\/p>\n<p data-ar-index=\"6\"><span style=\"font-weight: 400;\">A hacker could exploit it by sending a specially crafted request to the web-based management interface, leading to command execution with root-level privileges.<\/span><\/p>\n<p data-ar-index=\"8\"><span style=\"font-weight: 400;\">The vulnerability affects four Small Business RV Series models, namely the RV110W Wireless-N VPN Firewall, the RV130 VPN Router, the RV130W Wireless-N Multifunction VPN Router, and the RV215W Wireless-N VPN Router.<\/span><\/p>\n<p data-ar-index=\"10\"><span style=\"font-weight: 400;\">This vulnerability only impacts devices with the web-based remote management interface enabled on WAN connections. While the remote management feature is disabled in the default configuration, brief searches using Shodan detected exposed devices.<\/span><\/p>\n<p data-ar-index=\"12\"><span style=\"font-weight: 400;\">To find out if remote management is enabled, users must log in to the web-based management interface, navigate to \u201cBasic Settings &gt; Remote Management,\u201d and verify the state of the relevant check box.<\/span><\/p>\n<p data-ar-index=\"14\"><span style=\"font-weight: 400;\">Cisco will not be releasing a security update to address CVE-2022-20825 as the devices are no longer supported. There will also be no mitigations available other than to turn off remote management on the WAN interface.<\/span><\/p>\n<p data-ar-index=\"16\"><span style=\"font-weight: 400;\">Admins are urged to apply the configuration changes until they migrate to Cisco Small Business RV132W, RV160, or RV160W Routers, which the company actively supports.<\/span><\/p>\n<p data-ar-index=\"17\">\n<p data-ar-index=\"18\"><span style=\"font-weight: 400;\">For more information, read the <a href=\"https:\/\/www.bleepingcomputer.com\/news\/security\/cisco-says-it-won-t-fix-zero-day-rce-in-end-of-life-vpn-routers\/\" target=\"_blank\" rel=\"noopener\">original story<\/a> in Bleepingcomputer.<\/span><\/p>\n","protected":false},"excerpt":{"rendered":"<p>Cisco is advising owners of end-of-life Small Business RV routers to upgrade to newer models after revealing a remote code execution vulnerability that the company will no longer patch. The vulnerability is tracked as CVE-2022-20825 with a CVSS severity rating of 9.8 out of 10.0. As per a Cisco security advisory, the flaw is due [&hellip;]<\/p>\n","protected":false},"author":5,"featured_media":0,"comment_status":"closed","ping_status":"open","sticky":false,"template":"","format":"standard","meta":{"_acf_changed":false,"footnotes":""},"categories":[349,361,16],"tags":[],"class_list":["post-24210","post","type-post","status-publish","format-standard","hentry","category-development","category-privacy","category-security"],"acf":[],"_links":{"self":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/24210","targetHints":{"allow":["GET"]}}],"collection":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts"}],"about":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/types\/post"}],"author":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/users\/5"}],"replies":[{"embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/comments?post=24210"}],"version-history":[{"count":1,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/24210\/revisions"}],"predecessor-version":[{"id":24211,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/posts\/24210\/revisions\/24211"}],"wp:attachment":[{"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/media?parent=24210"}],"wp:term":[{"taxonomy":"category","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/categories?post=24210"},{"taxonomy":"post_tag","embeddable":true,"href":"https:\/\/technewsday.com\/staging\/wp-json\/wp\/v2\/tags?post=24210"}],"curies":[{"name":"wp","href":"https:\/\/api.w.org\/{rel}","templated":true}]}}