CVE-2016-1397

Name: CVE-2016-1397
Creator: NVD / NIST
Published: 2016-06-19T01:59:05.107+00:00
License: https://creativecommons.org/publicdomain/zero/1.0/

UnknownEPSS 1.78%

Last modified Jun 17, 2026

CVE-2016-1397 is a vulnerability of currently unknown severity. Buffer overflow in the web-based management interface on Cisco RV110W devices with firmware before 1.2.1.7, RV130W devices with firmware before 1.0.3.16, and RV215W devices with firmware before 1.3.0.8 allows remote authenticated users to cause a denial of service (device reload) via crafted configuration commands in an HTTP request, aka Bug ID CSCux82523.. EPSS estimates a 1.78% chance of exploitation in the next 30 days.

Description

Buffer overflow in the web-based management interface on Cisco RV110W devices with firmware before 1.2.1.7, RV130W devices with firmware before 1.0.3.16, and RV215W devices with firmware before 1.3.0.8 allows remote authenticated users to cause a denial of service (device reload) via crafted configuration commands in an HTTP request, aka Bug ID CSCux82523.

Metrics

EPSS Probability

1.78%

75.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

CWE-119

Affected Software

Vendor	Product	Versions
Cisco	Rv215w Wireless-N Vpn Router Firmware	1.1.0.5
Cisco	Rv215w Wireless-N Vpn Router Firmware	1.1.0.6
Cisco	Rv215w Wireless-N Vpn Router Firmware	1.2.0.14
Cisco	Rv215w Wireless-N Vpn Router Firmware	1.2.0.15
Cisco	Rv215w Wireless-N Vpn Router Firmware	1.3.0.7
Cisco	Rv110w Wireless-N Vpn Firewall Firmware	1.1.0.9
Cisco	Rv110w Wireless-N Vpn Firewall Firmware	1.2.0.9
Cisco	Rv110w Wireless-N Vpn Firewall Firmware	1.2.0.10
Cisco	Rv110w Wireless-N Vpn Firewall Firmware	1.2.1.4
Cisco	Rv130w Wireless-N Multifunction Vpn Router Firmware	1.0.0.21
Cisco	Rv130w Wireless-N Multifunction Vpn Router Firmware	1.0.1.3
Cisco	Rv130w Wireless-N Multifunction Vpn Router Firmware	1.0.2.7

References

Timeline

Published: Jun 19, 2016
Last Modified: Jun 17, 2026
Status: Modified

Frequently Asked Questions

What is CVE-2016-1397?

How severe is CVE-2016-1397?

Severity scoring for CVE-2016-1397 is pending analysis. The EPSS model estimates a 1.78% probability of exploitation in the next 30 days.

How do I fix CVE-2016-1397?

Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2016-1397?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST