Security Experts:

Connect with us

Hi, what are you looking for?


IoT Security

Cisco Improperly Patched Exploited Router Vulnerabilities

Cisco this week revealed that patches released in January for vulnerabilities in Small Business RV320 and RV325 routers were incomplete. The flaws have been exploited in live attacks. 

Cisco this week revealed that patches released in January for vulnerabilities in Small Business RV320 and RV325 routers were incomplete. The flaws have been exploited in live attacks. 

Hackers were observed targeting two security bugs in the routers, just days after Cisco released fixes. Due to the patches being incomplete, the vulnerabilities were not addressed, meaning that users continue to be exposed. 

“The initial fix for this vulnerability was found to be incomplete. Cisco is currently working on a complete fix,” the company says. “Firmware updates that address this vulnerability are not currently available. There are no workarounds that address this vulnerability.”

The first (CVE-2019-1652) of the two vulnerabilities could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands. The second flaw (CVE-2019-1653) could allow the attacker to retrieve sensitive information.

In late January, security researchers discovered more than 9,600 RV320 and RV325 routers in around 120 countries that were affected by CVE-2019-1653. Attackers could exploit the bug and then leverage CVE-2019-1652 to execute arbitrary commands and take over the affected devices. 

In addition to confirming that the two vulnerabilities were improperly addressed, Cisco this week released patches for two dozen flaws in Cisco IOS and IOS XE Software, including 18 High severity issues and 6 Medium severity bugs. 

These include information disclosure, command injection, denial of service, privilege escalation, arbitrary file upload, certificate validation, and access control list bypass vulnerabilities. Details on these bugs are available on Cisco’s support portal

Related: Cisco Patches Critical Vulnerability in Wireless Routers

Related: Hackers Target Cisco Routers via Recently Patched Flaws

Written By

Ionut Arghire is an international correspondent for SecurityWeek.

Click to comment

Daily Briefing Newsletter

Subscribe to the SecurityWeek Email Briefing to stay informed on the latest threats, trends, and technology, along with insightful columns from industry experts.

Join this webinar to learn best practices that organizations can use to improve both their resilience to new threats and their response times to incidents.


Join this live webinar as we explore the potential security threats that can arise when third parties are granted access to a sensitive data or systems.


Expert Insights

Related Content

IoT Security

Lexmark warns of a remote code execution (RCE) vulnerability impacting over 120 printer models, for which PoC code has been published.

IoT Security

A group of seven security researchers have discovered numerous vulnerabilities in vehicles from 16 car makers, including bugs that allowed them to control car...

IoT Security

A vulnerability affecting Dahua cameras and video recorders can be exploited by threat actors to modify a device’s system time.

IoT Security

Today’s growing attack surface is dominated by non-traditional endpoints.

IoT Security

Vulnerabilities in electric vehicle charging management systems can be exploited for DoS attacks and to steal energy or sensitive information.

Cybersecurity Funding

Internet of Things (IoT) and Industrial IoT security provider Shield-IoT this week announced that it has closed a $7.4 million Series A funding round,...

IoT Security

Australia's Defense Department said that they will remove surveillance cameras made by Chinese Communist Party-linked companies from its buildings.

IoT Security

Chinese video surveillance company Hikvision has patched a critical vulnerability in some of its wireless bridge products. The flaw can lead to remote CCTV...