What is CVE-2024-20470?

CVE-2024-20470 is a vulnerability in Cisco Small Business Rv Series Router Firmware, classified under CWE-146. Published 2024-10-02.

Is CVE-2024-20470 known to be exploited?

1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.

Vulnerability in Cisco Small Business Rv Series Router Firmware

CVE-2024-20470

A vulnerability in the web-based management interface of Cisco Small Business RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers could allow an authenticated, remote attacker to execute arbitrary code on an affected device. In o…

EPSS: 0.005 (66.8th percentile) — read the EPSS interpretation.

Affected products

Cisco Small Business Rv Series Router Firmware — versions 1.0.01.17, 1.0.03.17, 1.0.01.16

Weakness classification (CWE)

CWE-146

Public proof-of-concept exploits

fkie-cad/nvd-json-data-feeds

References

cisco-sa-rv34x-privesc-rce-qE33TCms

Frequently asked questions

What is CVE-2024-20470?: CVE-2024-20470 is a vulnerability in Cisco Small Business Rv Series Router Firmware, classified under CWE-146. Published 2024-10-02.
Is CVE-2024-20470 known to be exploited?: 1 public proof-of-concept repositories are indexed. Not currently listed in the CISA KEV catalog.