Cisco Completes Patch for RV320 and RV325 Routers Including Two New Bugs (CVE-2019-1827, CVE-2019-1828)

Earlier today, Cisco published updates to two advisories for the RV320 and RV325 routers that were originally reported in January 2019. Cisco also released two new advisories for medium severity bugs in the same routers, one that was discovered during internal testing (CVE-2019-1827) and another reported by a security researcher (CVE-2019-1828).

We previously blogged about the two vulnerabilities -- CVE-2019-1652 and CVE-2019-1653 -- in late January when they were first reported by Cisco. Around this time, exploit scripts began to surface that allowed attackers to begin probing for vulnerable devices. At the time, there were reportedly 9,000 accessible devices that were vulnerable to exploitation.

To learn more about these four vulnerabilities including patch information, please visit our blog.