← Back to CVE List

CVE-2019-15271

Published: 2019-11-26T03:15Z
Last Modified: 2025-02-24T15:35Z
Source: MITRE CVE List
License: MITRE-CVE-TOS
A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an authenticated, remote attacker to execute arbitrary commands with root privileges. The attacker must have either a valid credential or an active session token. The vulnerability is due to lack of input validation of the HTTP payload. An attacker could exploit this vulnerability by sending a malicious HTTP request to the web-based management interface of the targeted device. A successful exploit could allow the attacker to execute commands with root privileges. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt