Security Flaw in Cisco RVS4000 and WRVS4400N Routers
CVE-2011-1647

Currently unrated

Key Information:

Vendor: Cisco
Status: Rvs4000; Rvs4000 Software
Vendor: CVE Published:; 31 May 2011

Summary

A security vulnerability in the web management interface of Cisco RVS4000 and WRVS4400N routers allows unauthorized remote attackers to access the private key associated with the admin’s SSL certificate. This can be exploited through various unspecified vectors, leading to potential interception or misappropriation of secure communications. Users are encouraged to update their devices to the latest software versions to mitigate this risk.

References

http://www.securityfocus.com/bid/47985

vdb-entryx_refsource_BID

http://www.cisco.com/en/US/products/products_security_adv...

vendor-advisoryx_refsource_CISCO

http://www.securitytracker.com/id?1025565

vdb-entryx_refsource_SECTRACK

Timeline

Vulnerability published
May 31, 2011
Vulnerability Reserved
Apr 5, 2011