The web interface on Cisco SRP 520 series devices with firmware prior to 1.1.26 and SRP 520W-U and 540 series devices with firmware prior to 1.2.4 allows remote authenticated users to execute arbitrary commands via unspecified vectors, related to a "command injection vulnerability," aka Bug ID CSCtt46871.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
cisco small business srp520 series firmware |
||
cisco small business srp520 series firmware 1.01.01 |
||
cisco small business srp520 series firmware 1.01.09 |
||
cisco small business srp520 series firmware 1.01.11 |
||
cisco small business srp520 series firmware 1.01.19 |
||
cisco small business srp520 series firmware 1.01.23 |
||
cisco small business srp521w |
||
cisco small business srp526w |
||
cisco small business srp527w |
||
cisco small business srp520-u series firmware 1.1.0 |
||
cisco small business srp521w-u |
||
cisco small business srp526w-u |
||
cisco small business srp527w-u |
||
cisco small business srp540 series firmware |
||
cisco small business srp540 series firmware 1.02.00.023 |
||
cisco small business srp541w |
||
cisco small business srp546w |
||
cisco small business srp547w |
Vulmon