HIGH🚩 CISA KEV⚡ EXPLOIT✓ PATCH🇬🇧 English

CVE-2019-1652

CVSS 7.2v3.1pub. 2019-01-24upd. 2025-10-28

A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands. The vulnerability is due to improper validation of user-supplied input. An attacker could exploit this vulnerability by sending malicious HTTP POST requests to the web-based management interface of an affected device. A successful exploit could allow the attacker to execute arbitrary commands on the underlying Linux shell as root. Cisco has released firmware updates that address this vulnerability.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
  • Cisco Rv320

    HW
    Cisco
    wszystkie wersje
  • Cisco Rv320 Firmware

    OS
    Cisco
    1.4.2.15 – 1.4.2.22 (bez)
  • Cisco Rv325

    HW
    Cisco
    wszystkie wersje
  • Cisco Rv325 Firmware

    OS
    Cisco
    1.4.2.15 – 1.4.2.22 (bez)

CISA KEV — szczegółyi

Dostawcai
Cisco
Produkti
Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers
Data dodania do KEVi
3 marca 2022
Termin remediation (USA)i
17 marca 2022(po terminie)
Wymagana akcja (CISA)i

Zastosuj aktualizacje zgodnie z instrukcjami dostawcy.

tłumaczenie AI
Pokaż oryginał (EN)

Apply updates per vendor instructions.

Opis CISAi

Luka w interfejsie zarządzania opartym na przeglądarce routerów VPN Cisco Small Business RV320 i RV325 Dual Gigabit WAN mogła umożliwić uwierzytelnionemu, zdalnemu atakującemu posiadającemu uprawnienia administratora na zainfekowanym urządzeniu wykonanie dowolnych poleceń.

tłumaczenie AI
Pokaż oryginał (EN)

A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands.

🔴
NATYCHMIASTOWE DZIAŁANIE
Aktywnie wykorzystywane w atakach (CISA KEV). Załataj jak najszybciej.
CISA DEADLINE: 17 marca 2022
Tagi
VPNCommand Injection
CWE
Referencje

Powiązane podatności

CVE-2017-3882CRITICAL9.6ten sam produkt

A vulnerability in the Universal Plug-and-Play (UPnP) implementation in the Cisco CVR100W Wireless-N VPN Route...

CVE-2019-1653HIGH7.5⚠ KEVten sam produkt

A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN...

CVE-2023-20128HIGH7.2ten sam produkt

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gi...

CVE-2023-20117HIGH7.2ten sam produkt

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gi...

CVE-2019-15957HIGH7.2ten sam produkt

A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could ...