CVE-2021-1308

Summary

CVE	CVE-2021-1308
State	PUBLIC
Assigner	[email protected]
Source Priority	CVE Program / NVD first with legacy fallback
Published	2021-04-08 04:15:00 UTC
Updated	2023-11-07 03:27:00 UTC
Description	Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business RV Series Routers. An unauthenticated, adjacent attacker could execute arbitrary code or cause an affected router to leak system memory or reload. A memory leak or device reload would cause a denial of service (DoS) condition on an affected device. For more information about these vulnerabilities, see the Details section of this advisory. Note: LLDP is a Layer 2 protocol. To exploit these vulnerabilities, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).

Risk And Classification

Problem Types: CWE-401

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Hardware	Cisco	Rv132w	-	All	All	All
Operating System	Cisco	Rv132w Firmware	1.0.0.14	All	All	All
Operating System	Cisco	Rv132w Firmware	1.0.1.14	All	All	All
Operating System	Cisco	Rv132w Firmware	1.0.1.20	All	All	All
Hardware	Cisco	Rv134w	-	All	All	All
Operating System	Cisco	Rv134w Firmware	1.0.0.14	All	All	All
Operating System	Cisco	Rv134w Firmware	1.0.1.14	All	All	All
Operating System	Cisco	Rv134w Firmware	1.0.1.20	All	All	All
Hardware	Cisco	Rv160	-	All	All	All
Hardware	Cisco	Rv160w	-	All	All	All
Operating System	Cisco	Rv160w Firmware	1.0.0.14	All	All	All
Operating System	Cisco	Rv160w Firmware	1.0.1.14	All	All	All
Operating System	Cisco	Rv160w Firmware	1.0.1.20	All	All	All
Operating System	Cisco	Rv160 Firmware	1.0.0.14	All	All	All
Operating System	Cisco	Rv160 Firmware	1.0.1.14	All	All	All
Operating System	Cisco	Rv160 Firmware	1.0.1.20	All	All	All
Hardware	Cisco	Rv260	-	All	All	All
Hardware	Cisco	Rv260p	-	All	All	All
Operating System	Cisco	Rv260p Firmware	1.0.0.14	All	All	All
Operating System	Cisco	Rv260p Firmware	1.0.1.14	All	All	All
Operating System	Cisco	Rv260p Firmware	1.0.1.20	All	All	All
Hardware	Cisco	Rv260w	-	All	All	All
Operating System	Cisco	Rv260w Firmware	1.0.0.14	All	All	All
Operating System	Cisco	Rv260w Firmware	1.0.1.14	All	All	All
Operating System	Cisco	Rv260w Firmware	1.0.1.20	All	All	All
Operating System	Cisco	Rv260 Firmware	1.0.0.14	All	All	All
Operating System	Cisco	Rv260 Firmware	1.0.1.14	All	All	All
Operating System	Cisco	Rv260 Firmware	1.0.1.20	All	All	All
Hardware	Cisco	Rv340	-	All	All	All
Hardware	Cisco	Rv340w	-	All	All	All
Operating System	Cisco	Rv340w Firmware	1.0.0.14	All	All	All
Operating System	Cisco	Rv340w Firmware	1.0.1.14	All	All	All
Operating System	Cisco	Rv340w Firmware	1.0.1.20	All	All	All
Operating System	Cisco	Rv340 Firmware	1.0.0.14	All	All	All
Operating System	Cisco	Rv340 Firmware	1.0.1.14	All	All	All
Operating System	Cisco	Rv340 Firmware	1.0.1.20	All	All	All
Hardware	Cisco	Rv345	-	All	All	All
Hardware	Cisco	Rv345p	-	All	All	All
Operating System	Cisco	Rv345p Firmware	1.0.0.14	All	All	All
Operating System	Cisco	Rv345p Firmware	1.0.1.14	All	All	All
Operating System	Cisco	Rv345p Firmware	1.0.1.20	All	All	All
Operating System	Cisco	Rv345 Firmware	1.0.0.14	All	All	All
Operating System	Cisco	Rv345 Firmware	1.0.1.14	All	All	All
Operating System	Cisco	Rv345 Firmware	1.0.1.20	All	All	All

References

Reference	Source	Link	Tags
Cisco Small Business RV Series Routers Link Layer Discovery Protocol Vulnerabilities	CISCO	tools.cisco.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

There are currently no legacy QID mappings associated with this CVE.