2Eki
CVE-2024-20470 | Cisco RV340/RV340W/RV345/RV345P up to 1.0.03.29 Web-based Management Interface expression/command delimiters (cisco-sa-rv34x-privesc-rce-qE33TCms)
A vulnerability classified as critical has been found in Cisco RV340, RV340W, RV345 and RV345P. Affected is an unknown function of the component Web-based Management Interface. The manipulation leads to improper neutralization of expression/command delimiters. This vulnerability is traded as CVE-2024-20470. It is possible to launch the attack remotely. There is no exploit available. It is recommended to upgrade the affected component.