CVE-2015-6397 (rv110w_wireless-n_vpn_firewall_firmware, rv130w_wireless-n_multifunction_vpn_router_firmware, rv215w_wireless-n_vpn_router_firmware)
Cisco RV110W, RV130W, and RV215W devices have an incorrect RBAC configuration for the default account, which allows remote authenticated users to obtain root access via a login session with that account, aka Bug IDs CSCuv90139, CSCux58175, and CSCux73557.