CVE-2019-1653
critical-risk
Published 2019-01-24
A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an unauthenticated, remote attacker to retrieve sensitive information. The vulnerability is due to improper access controls for URLs. An attacker could exploit this vulnerability by connecting to an affected device via HTTP or HTTPS and requesting specific URLs. A successful exploit could allow the attacker to download the router configuration or detailed diagnostic information. Cisco has released firmware updates that address this vulnerability.
Do I need to act?
!
94.4% chance of exploitation in next 30 days
EPSS score — higher than 6% of all CVEs
!
CISA KEV: actively exploited in the wild
On the Known Exploited Vulnerabilities catalog — federal agencies must patch
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
7
CVSS 7.5/10
High
NETWORK
/ LOW complexity
Affected Products (4)
Affected Vendors
References (31)
Third Party Advisory
http://packetstormsecurity.com/files/152305/Cisco-RV320-RV325-Unauthenticated-Re...
Third Party Advisory
http://www.securityfocus.com/bid/106732
Third Party Advisory
https://badpackets.net/over-9000-cisco-rv320-rv325-routers-vulnerable-to-cve-201...
Mailing List
https://seclists.org/bugtraq/2019/Mar/53
Mailing List
https://seclists.org/bugtraq/2019/Mar/54
Third Party Advisory
https://threatpost.com/scans-cisco-routers-code-execution/141218/
Third Party Advisory
https://www.exploit-db.com/exploits/46655/
Third Party Advisory
https://www.youtube.com/watch?v=bx0RQJDlGbY
Third Party Advisory
https://www.zdnet.com/article/hackers-are-going-after-cisco-rv320rv325-routers-u...
Third Party Advisory
http://packetstormsecurity.com/files/152305/Cisco-RV320-RV325-Unauthenticated-Re...
and 11 more references
70
/ 100
critical-risk
Severity
26/34 · High
Exploitability
34/34 · Critical
Exposure
10/34 · Low