Download Certificate- Most Promising Partner | ECIO | Most Admired Brand | Most Trusted Company

New vulnerabilities Threatens Over 9,000 Hackable Cisco RV320/RV325 Routers Worldwide


By MYBRANDBOOK


New vulnerabilities Threatens Over 9,000 Hackable Cisco RV320/RV325 Routers Worldwide

 

If you are using Cisco RV320 or RV325 Dual Gigabit WAN VPN routers in your organization for connectivity and security, then you should immediately install the latest firmware update released by the vendor last week. The hackers have actively been exploiting two newly patched high-severity router vulnerabilities in the wild after a security researcher released their proof-of-concept exploit code on the Internet last weekend

 

Out of these vulnerabilities, one of them are a command injection flaw and another is an information disclosure flaw, a combination of which could allow a remote attacker to take full control of an affected Cisco router. The first issue exists in RV320 and RV325 dual gigabit WAN VPN routers running firmware versions 1.4.2.15 through 1.4.2.19, and the second affects firmware versions 1.4.2.15 and 1.4.2.17, according to the Cisco’s advisory. Both the vulnerabilities, discovered and responsibly reported to the company by German security firm RedTeam Pentesting, actually resides in the web-based management interface used for the routers and are remotely exploitable.

 

The first vulnerabilities, code name CVE-2019-1652, which can allows an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands on the system. The second one as code name CVE-2019-1653 doesn't require any authentication to reach the router's web-based management portal, allowing attackers to retrieve sensitive information including the router's configuration file containing MD5 hashed credentials and diagnostic information. 

 

The PoC exploit code targeting Cisco RV320/RV325 routers published on the Internet first exploits CVE-2019-1653 to retrieve the configuration file from the router to obtain its hashed credentials and then exploits CVE-2019-1652 to execute arbitrary commands and gain complete control of the affected device. Researchers from cybersecurity firm Bad Packets said they found at least 9,657 Cisco routers (6,247 RV320 and 3,410 RV325) worldwide that are vulnerable to the information disclosure vulnerability, most of which located in the United States.

 

The firm shared an interactive map, showing all vulnerable RV320/RV325 Cisco routers in 122 countries and on the network of 1,619 unique internet service providers. Bad Packets said its honeypots detected opportunistic scanning activity for vulnerable routers from multiple hosts from Saturday, suggesting the hackers are actively trying to exploit the flaws to take full control of the vulnerable routers.

 

The best way to protect yourself from becoming the target of one such attack is to install the latest Cisco RV320 and RV325 Firmware release 1.4.2.20 as soon as possible.

 

Administrators who have not yet applied the firmware update are highly recommended to change their router's admin and WiFi credentials considering themselves already compromised.

 
 BREAKING NEWS  BREAKING NEWS
Cisco announces AI-native secure Wi-Fi 7 for future-ready employe

Cisco announces AI-native secure Wi-Fi 7 for future-ready employe...

Announcing a major leap in wireless technology, Cisco has launched its Wi...

The BSE benchmark Sensex tumbled over 800 points, leaving investo

The BSE benchmark Sensex tumbled over 800 points, leaving investo...

The BSE benchmark Sensex recently experienced a significant drop, tumblin...

North Korean GPS Interference Disrupts Air Traffic

North Korean GPS Interference Disrupts Air Traffic...

South Korea's military has publicly accused North Korea of disrupting GP...

US ordered TSMC to halt chip shipments to China

US ordered TSMC to halt chip shipments to China...

TSMC has had regular discussions with the government on export control issu...

 TECHNO TRENDS  Placeholder image
Nazara and ONDC set to transform in-game monetization with ‘

Nazara and ONDC set to transform in-game monetization with ‘

Nazara Technologies has teamed up with the Open Network for Digital Comme...

Jio Platforms and NICSI to offer cloud services to government

Jio Platforms and NICSI to offer cloud services to government

In a collaborative initiative, the National Informatics Centre Services In...

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

A syndicate led by Rail Vikas Nigam Limited (abbreviated as RVNL), along wi...

Pinterest tracks users without consent, alleges complaint

Pinterest tracks users without consent, alleges complaint

A recent complaint alleges that Pinterest, the popular image-sharing platf...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
Eloelo teams up with Elvish Yadav for India's biggest digital

Eloelo teams up with Elvish Yadav for India's biggest digital

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix has introduced a new “Moments” feature on its mobile app, whic
Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez has partnered with American YouTuber Mr. Beast to b
 MOVERS & SHAKERS  Placeholder image
Kamal Nath quits SIFY Technologies

Kamal Nath quits SIFY Technologies

Visa elevates Rishi Chhabra as new Country Manager for India

Visa elevates Rishi Chhabra as new Country Manager for India

Rishi holds a Master’s in Industrial Engineering from The Ohio State Univ
Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys continues to deepen its investment in the APAC region. Earlier this
 OPEN YOUR EYES  Placeholder image

India's IT industry has moved nearly two thirds of its 4.36 million workforces to work from home
Artificial Intelligence and Cyber-security are key pillars of Digitization
Digital banking brings revolution during COVID-19
Future of Work To Be Fully Dependent Upon Digital Technology
India is the fastest growing digital economies, Shaping Towards the New Normal
 INTERVIEWS  Placeholder image
Acer addresses evolving customer needs by consistently pushing

Acer addresses evolving customer needs by consistently pushing

AMD Pensando driving innovation in the DPU architecture space

AMD Pensando driving innovation in the DPU architecture space

AMD Pensando stands out in the DPU (Data Processing Unit) market with its u
Alpha Max offers high end solutions in the network space to en

Alpha Max offers high end solutions in the network space to en

The vision at Alpha Max is to attain quality as the trademark and create a

 HOT PICK  Placeholder image
BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall announced today the launch of the TZ80, a groundbreaking securit
Gigabyte X3D Turbo: A Gaming Revolution

Gigabyte X3D Turbo: A Gaming Revolution

GIGABYTE X3D Turbo Mode is a cutting-edge feature that unifies cores distr
 MAKE IN INDIA BRANDS   Placeholder image
SAFE SECURITY SERVICES PVT. LTD.

SAFE SECURITY SERVICES PVT. LTD.


VEHERE INTERACTIVE PVT. LTD.

VEHERE INTERACTIVE PVT. LTD.


CENTRE FOR DEVELOPMENT OF TELEMATICS (C-DOT)

CENTRE FOR DEVELOPMENT OF TELEMATICS (C-DOT)


PDRL - Passenger Drone Research Pvt. Ltd.

PDRL - Passenger Drone Research Pvt. Ltd.


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

GAINING CUSTOMERS’ TRUST IS ESSENTIAL FOR SMOOTH OMNICHANNEL INTERACTIONS

In the fiscal year 2024-25, our organization has i...

SUSTAINING SUCCESS BY DELIVERING VALUE TO CUSTOMERS

This includes conducting regular audits, risk asse...

PRIORITIZING APPROPRIATE DATA MANAGEMENT AND ETHICAL AI IS THE NEED OF THE HOUR

For us, cultivating customer trust amidst for that...

 ICONS OF INDIA  Placeholder image

Icons Of India : Dilip Asbe

At present, Dilip Asbe is heading National Payments Corporation of Ind...

Icons Of India : Dr. Sanjay Bahl

Dr. Sanjay Bahl has around four decades of experience in the ICT indus...

Icons Of India : Anil Agarwal

Anil Agarwal, the Founder and Chairman of Vedanta Resources Ltd., is r...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Regaining its Technical Aura By Resonating Consistency & Reliability

Brand awareness metrics and KPIs help TDM Networks to monitor and analyze the ...

Delivering Innovative Solutions To Address Customer Challenges

Data plays a crucial role in Shivaami Cloud’s brand strategy. It leverages a...

Redefining The Future Of Telecom and Networking Industry with Make in India Initiative

Syrotech Networks has seen a notable uptick in customer acceptance of digital ...

 PSU  Placeholder image

ITI - ITI Limited 

ITI Limited is a leading provider of telecommunications equipment, sol...

NSE - National Stock Exchange  

NSE is the leading stock exchange in India....

IREDA - Indian Renewable Energy Development Agency Limited 

IREDA is a specialized financial institution in India that facilitates...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2024: TATA CONSULTANCY SERVICES LTD. (TCS)

TCS, a global leader in IT services, consulting, and business solutions, has b...

Most Trusted Brands 2024: MICROSOFT CORPORATION

Microsoft Corporation has been at the forefront of technological innovation fo...

Most Trusted Brands 2024: DELL TECHNOLOGIES INC.

Dell Technologies has been at the forefront of developing edge computing solut...

 Global Indian industry   Value-Added Distribution

Indian Tech Talent Excelling The Tech World - JAYASHREE ULLAL, President and CEO - Arista Network

Jayshree V. Ullal is a British-American billionaire businesswoman, ser...

Indian Tech Talent Excelling The Tech World - AJAY BANGA, President - World Bank

Ajay Banga is an Indian-born American business executive who currently...

Indian Tech Talent Excelling The Tech World - Steve Sanghi, Executive Chair, Microchip

Steve Sanghi, the Executive Chair of Microchip Technology, has been a ...

 STARNITE AWARDS 2024  
 ITFORUM 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 IMAGE GALLERY   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
Brandbook Brandbook
 TECHNOLOGY DISRUPTION Placeholder image

HCLTech signs MoU with Business Finland for digital innovation

HCLTech signs MoU with Business Finland for digital innovation

Tech Mahindra helping Telefonica Germany to digitally transform its microwave network

Tech Mahindra helping Telefonica Germany to digitally transform its microwave network

30% of Critical Infrastructure Organizations Will Experience a Security Breach by 2025

30% of Critical Infrastructure Organizations Will Experience a Security Breach by 2025

Can eSIM protect SIM swap frauds in India?

Can eSIM protect SIM swap frauds in India?

 UNICORNS REVOLUTIONISING Placeholder image

BrowserStack

BrowserStack

Info Edge India Ltd.

Info Edge India Ltd.

Blink Commerce Private Limited

Blink Commerce Private Limited

Go Digit Life Insurance Limited

Go Digit Life Insurance Limited


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW