CISA Known Exploited Vulnerability
This vulnerability is actively exploited in the wild and listed in the CISA Known Exploited Vulnerabilities catalog.
Remediation Deadline: Mar 17, 2022
CVE-2022-20699
High
EPSS 89.9%CISA KEVDescription
A vulnerability in Cisco Small Business RV160, RV260, RV340, and RV345 Series Routers could allow an attacker to do any of the following: Execute arbitrary code elevate privileges, execute arbitrary commands, bypass authentication and authorization protections, fetch and run unsigned software, or cause a denial of service (DoS).
EPSS — Exploit Probability
89.9%
Higher than 99.6% of all CVEs
Required Action
https://nvd.nist.gov/vuln/detail/CVE-2022-20699
Risk Assessment
HIGHIn CISA KEV
High EPSS
Details
- Severity
- High
- EPSS
- 89.9%
- CISA KEV
- Yes
- Ransomware
- Unknown
- Articles
- 0
Timeline
Published
Mar 3, 2022
Added to KEV
Mar 3, 2022
Remediation Due
Mar 17, 2022
Affected Product
Cisco
Small Business RV160, RV260, RV340, and RV345 Series Routers
View all Cisco CVEs