Cisco Small Business RV320 and RV325 Routers Information Disclosure Vulnerability

Added Nov. 3, 2021 • Due May 3, 2022 • CVE-2019-1653

Overdue Cisco / Small Business RV320 and RV325 Routers CWE-284

Description

Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers contain improper access controls for URLs. Exploitation could allow an attacker to download the router configuration or detailed diagnostic information.

Required Action

Apply updates per vendor instructions.

References

https://nvd.nist.gov/vuln/detail/CVE-2019-1653

Additional Information

Catalog Version: 2025.01.24
Catalog Released: Jan. 24, 2025
Days Until Due: 0 days
Last Updated: 6 months ago