Multiple Security Flaws Detected (and fixed) in Cisco Small Business Routers
CISO MAG | November 11, 2019
Potential vulnerabilities in Cisco’s small business routers could allow a remote attacker to exploit the devices to get sensitive data. Cisco, the networking hardware company, stated that the issue existed in its RV320 and RV325 Dual Gigabit WAN VPN business routers. According to the official statement, the Cisco Small Business Routers exhibited numerous security issues. Specifically, three major security bugs were discovered in the Cisco RV320 and RV325 Dual Gigabit WAN VPN Routers firmware named as CSCvq34465, CSCvq34469, and CSCvq34472.The routers affected by these bugs are facing issues like, Static certificates and keys, Hardcoded password hashes, and Multiple vulnerabilities in third-party software (TPS) components. If exploited, the vulnerabilities allow anyone to get access to the base operating system to easily gain root access on the target device, according to the statement.