Test ID:	1.3.6.1.4.1.25623.1.0.105847
Category:	CISCO
Title:	Cisco RV110W, RV130W, and RV215W Routers Static Credential Vulnerability (cisco-sa-20160803-rv110_130w2)
Summary:	A vulnerability in the default account when used with a; specific configuration of the Cisco RV110W Wireless-N VPN Firewall, Cisco RV130W Wireless-N; Multifunction VPN Router, and the Cisco RV215W Wireless-N VPN Router could allow an; authenticated, remote attacker to gain root access to the device. The account could incorrectly; be granted root privileges at authentication time.
Description:	Summary: A vulnerability in the default account when used with a specific configuration of the Cisco RV110W Wireless-N VPN Firewall, Cisco RV130W Wireless-N Multifunction VPN Router, and the Cisco RV215W Wireless-N VPN Router could allow an authenticated, remote attacker to gain root access to the device. The account could incorrectly be granted root privileges at authentication time. Solution: This vulnerability is fixed in the following firmware versions: - RV110W Wireless-N VPN Firewall, Release 1.2.1.7 - RV130W Wireless-N Multifunction VPN Router, Release 1.0.3.16 - RV215W Wireless-N VPN Router, Release 1.3.0.8 CVSS Score: 9.0 CVSS Vector: AV:N/AC:L/Au:S/C:C/I:C/A:C
Cross-Ref:	Common Vulnerability Exposure (CVE) ID: CVE-2015-6397 BugTraq ID: 92273 http://www.securityfocus.com/bid/92273 Cisco Security Advisory: 20160803 Cisco RV110W, RV130W, and RV215W Routers Static Credential Vulnerability http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160803-rv110_130w2 http://www.securitytracker.com/id/1036524
Copyright	Copyright (C) 2016 Greenbone AG

This is only one of 145615 vulnerability tests in our test suite. Find out more about running a complete security audit. To run a free test of this vulnerability against your system, register below.