What is CVE-2020-3146?

CVE-2020-3146 is a high-severity vulnerability in Cisco Rv130w Wireless-n Multifunction Vpn Router Firmware, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 8.8/10. Published 2020-07-16.

How severe is CVE-2020-3146?

High severity. CVSS v3 base score is 8.8 out of 10.

Buffer overflow in Cisco Rv130w Wireless-n Multifunction Vpn Router Firmware

CVE-2020-3146

Multiple vulnerabilities in the web-based management interface of the Cisco RV110W Wireless-N VPN Firewall, RV130 VPN Router, RV130W Wireless-N Multifunction VPN Router, and RV215W Wireless-N VPN Router could allow an authenticated, remote…

Vulnerability class: Buffer Overflow

EPSS: 0.017 (82.8th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 8.8 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Cisco Rv130w Wireless-n Multifunction Vpn Router Firmware — versions n/a

Weakness classification (CWE)

CWE-119 — Improper Restriction of Operations within the Bounds of a Memory Buffer

References

20200715 Cisco RV110W, RV130, RV130W, and RV215W Routers Management Interface Remote Command Execution Multiple Vulnerabilities (vendor-advisory, x_refsource_CISCO)

Frequently asked questions

What is CVE-2020-3146?: CVE-2020-3146 is a high-severity vulnerability in Cisco Rv130w Wireless-n Multifunction Vpn Router Firmware, classified under Improper Restriction of Operations within the Bounds of a Memory Buffer. CVSS score: 8.8/10. Published 2020-07-16.
How severe is CVE-2020-3146?: High severity. CVSS v3 base score is 8.8 out of 10.