CVE-2021-1308— Cisco Small Business RV Series Routers Link Layer Discovery Protocol Vulnerabilities

CVSS 7.4 · High EPSS 0.10% · P26 Updated Feb 24, 2026

Get alerts for future matching vulnerabilitiesLog in to subscribe

I. Basic Information for CVE-2021-1308

Vulnerability Information

Have questions about the vulnerability? See if Shenlong's analysis helps!

Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.

Vulnerability Title

Cisco Small Business RV Series Routers Link Layer Discovery Protocol Vulnerabilities

Source: NVD (National Vulnerability Database)

Vulnerability Description

Multiple vulnerabilities exist in the Link Layer Discovery Protocol (LLDP) implementation for Cisco Small Business RV Series Routers. An unauthenticated, adjacent attacker could execute arbitrary code or cause an affected router to leak system memory or reload. A memory leak or device reload would cause a denial of service (DoS) condition on an affected device. For more information about these vulnerabilities, see the Details section of this advisory. Note: LLDP is a Layer 2 protocol. To exploit these vulnerabilities, an attacker must be in the same broadcast domain as the affected device (Layer 2 adjacent).

Source: NVD (National Vulnerability Database)

CVSS Information

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Source: NVD (National Vulnerability Database)

Vulnerability Type

内存缓冲区边界内操作的限制不恰当

Source: NVD (National Vulnerability Database)

Vulnerability Title

Cisco Link Layer Discovery Protocol 缓冲区错误漏洞

Source: CNNVD (China National Vulnerability Database)

Vulnerability Description

Cisco Link Layer Discovery Protocol是美国思科（Cisco）公司的一个路由器。 Cisco Link Layer Discovery Protocol 存在缓冲区错误漏洞，攻击者可利用该漏洞可以执行任意代码，或导致受影响的路由器泄漏系统内存或重新加载。

Source: CNNVD (China National Vulnerability Database)

CVSS Information

N/A

Source: CNNVD (China National Vulnerability Database)

Vulnerability Type

N/A

Source: CNNVD (China National Vulnerability Database)

Affected Products

Vendor	Product	Affected Versions	CPE	Subscribe
Cisco	Cisco Small Business RV Series Router Firmware	n/a	-

II. Public POCs for CVE-2021-1308

#	POC Description	Source Link	Shenlong Link

AI-Generated POCPremium

No public POC found.

III. Intelligence Information for CVE-2021-1308

请登录查看更多情报信息。

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-multi-lldp-u7e4chCevendor-advisoryx_refsource_CISCO
https://nvd.nist.gov/vuln/detail/CVE-2021-1308

Same Patch Batch · Cisco · 2021-04-08 · 29 CVEs total

CVE-2021-1459	9.8 CRITICAL	Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers Management Interface Remote
CVE-2021-1362	8.8 HIGH	Cisco Unified Communications Products Remote Code Execution Vulnerability
CVE-2021-1137	7.8 HIGH	Cisco SD-WAN vManage Software Vulnerabilities
CVE-2021-1480	7.8 HIGH	Cisco SD-WAN vManage Software Vulnerabilities
CVE-2021-1479	7.8 HIGH	Cisco SD-WAN vManage Software Vulnerabilities
CVE-2021-1404	7.5 HIGH	Clam AntiVirus (ClamAV) Email Parser Denial of Service Vulnerability
CVE-2021-1405	7.5 HIGH	Clam AntiVirus (ClamAV) PDF Parser Denial of Service Vulnerability
CVE-2021-1252	7.5 HIGH	Clam AntiVirus (ClamAV) Excel XLM Parser Denial of Service Vulnerability
CVE-2021-1251	7.4 HIGH	Cisco Small Business RV Series Routers Link Layer Discovery Protocol Vulnerabilities
CVE-2021-1309	7.4 HIGH	Cisco Small Business RV Series Routers Link Layer Discovery Protocol Vulnerabilities
CVE-2021-1386	7.0 HIGH	Cisco Advanced Malware Protection for Endpoints Windows Connector, ClamAV for Windows, an
CVE-2021-1485	6.6 MEDIUM	Cisco IOS XR Software Command Injection Vulnerability
CVE-2021-1475	6.5 MEDIUM	Cisco Umbrella Link and CSV Formula Injection Vulnerabilities
CVE-2021-1474	6.5 MEDIUM	Cisco Umbrella Link and CSV Formula Injection Vulnerabilities
CVE-2021-1413	6.3 MEDIUM	Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Authenticated Remote C
CVE-2021-1414	6.3 MEDIUM	Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Authenticated Remote C
CVE-2021-1415	6.3 MEDIUM	Cisco RV340, RV340W, RV345, and RV345P Dual WAN Gigabit VPN Routers Authenticated Remote C
CVE-2021-1409	6.1 MEDIUM	Cisco Unified Communications Products Cross-Site Scripting Vulnerabilities
CVE-2021-1380	6.1 MEDIUM	Cisco Unified Communications Products Cross-Site Scripting Vulnerabilities
CVE-2021-1463	6.1 MEDIUM	Cisco Unified Intelligence Center Reflected Cross-Site Scripting Vulnerability

Showing top 20 of 29 CVEs. View all on vendor page → →

IV. Related Vulnerabilities

Same product: Cisco Small Business RV Series Router Firmware

Same vendor: Cisco

Same weakness: CWE-119

V. Comments for CVE-2021-1308

No comments yet

Goal Reached Thanks to every supporter — we hit 100%!

CVE-2021-1308— Cisco Small Business RV Series Routers Link Layer Discovery Protocol Vulnerabilities

I. Basic Information for CVE-2021-1308

Vulnerability Information

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Vulnerability Title

Vulnerability Description

CVSS Information

Vulnerability Type

Affected Products

II. Public POCs for CVE-2021-1308

III. Intelligence Information for CVE-2021-1308

Same Patch Batch · Cisco · 2021-04-08 · 29 CVEs total

IV. Related Vulnerabilities

V. Comments for CVE-2021-1308

Leave a comment