Download Certificate- CMOs | ECIO | Most Admired Brand | Most Trusted Company

New vulnerabilities Threatens Over 9,000 Hackable Cisco RV320/RV325 Routers Worldwide


By MYBRANDBOOK


New vulnerabilities Threatens Over 9,000 Hackable Cisco RV320/RV325 Routers Worldwide

 

If you are using Cisco RV320 or RV325 Dual Gigabit WAN VPN routers in your organization for connectivity and security, then you should immediately install the latest firmware update released by the vendor last week. The hackers have actively been exploiting two newly patched high-severity router vulnerabilities in the wild after a security researcher released their proof-of-concept exploit code on the Internet last weekend

 

Out of these vulnerabilities, one of them are a command injection flaw and another is an information disclosure flaw, a combination of which could allow a remote attacker to take full control of an affected Cisco router. The first issue exists in RV320 and RV325 dual gigabit WAN VPN routers running firmware versions 1.4.2.15 through 1.4.2.19, and the second affects firmware versions 1.4.2.15 and 1.4.2.17, according to the Cisco’s advisory. Both the vulnerabilities, discovered and responsibly reported to the company by German security firm RedTeam Pentesting, actually resides in the web-based management interface used for the routers and are remotely exploitable.

 

The first vulnerabilities, code name CVE-2019-1652, which can allows an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands on the system. The second one as code name CVE-2019-1653 doesn't require any authentication to reach the router's web-based management portal, allowing attackers to retrieve sensitive information including the router's configuration file containing MD5 hashed credentials and diagnostic information. 

 

The PoC exploit code targeting Cisco RV320/RV325 routers published on the Internet first exploits CVE-2019-1653 to retrieve the configuration file from the router to obtain its hashed credentials and then exploits CVE-2019-1652 to execute arbitrary commands and gain complete control of the affected device. Researchers from cybersecurity firm Bad Packets said they found at least 9,657 Cisco routers (6,247 RV320 and 3,410 RV325) worldwide that are vulnerable to the information disclosure vulnerability, most of which located in the United States.

 

The firm shared an interactive map, showing all vulnerable RV320/RV325 Cisco routers in 122 countries and on the network of 1,619 unique internet service providers. Bad Packets said its honeypots detected opportunistic scanning activity for vulnerable routers from multiple hosts from Saturday, suggesting the hackers are actively trying to exploit the flaws to take full control of the vulnerable routers.

 

The best way to protect yourself from becoming the target of one such attack is to install the latest Cisco RV320 and RV325 Firmware release 1.4.2.20 as soon as possible.

 

Administrators who have not yet applied the firmware update are highly recommended to change their router's admin and WiFi credentials considering themselves already compromised.

 
 BREAKING NEWS  BREAKING NEWS
Permanent deletion of transactions can make e-rupee anonymous, RB

Permanent deletion of transactions can make e-rupee anonymous, RB...

The Governor of Reserve Bank of India (RBI) stated that the permanent del...

Zscaler unveils Digital Experience Monitoring Copilot

Zscaler unveils Digital Experience Monitoring Copilot...

Zscaler has announced groundbreaking innovations - ZDX Copilot, Hosted Mon...

Ola Krutrim unveils its AI vision for India

Ola Krutrim unveils its AI vision for India...

Ola's artificial intelligence platform, Krutrim has revealed its plans to ...

Tamil Nadu Police Facial Recognition Portal faced breach

Tamil Nadu Police Facial Recognition Portal faced breach...

A security flaw was discovered in the facial recognition webpage of the Ta...

 TECHNO TRENDS  Placeholder image
BHIM to join e-commerce, competing with PhonePe and Google Pay

BHIM to join e-commerce, competing with PhonePe and Google Pay

The government-supported payment software BHIM is getting ready to join t...

The latest version of X helps prevent deepfakes on social medi

The latest version of X helps prevent deepfakes on social medi

To combat deepfakes and shallowfakes, Elon Musk revealed a new update t...

India and Namibia collaborate on a payment system similar to U

India and Namibia collaborate on a payment system similar to U

Once operational, the platform will enable digital transactions in Namibia,...

Sebi issues show-cause notices to six Adani group firms

Sebi issues show-cause notices to six Adani group firms

Sebi issued show-cause notices to six Adani Group firms, including Adani ...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
S.S. Rajamouli and Disney+ Hotstar brings the untold story of

S.S. Rajamouli and Disney+ Hotstar brings the untold story of

Airtel Xstream Play strengthens regional content library, part

Airtel Xstream Play strengthens regional content library, part

Bharti Airtel (“Airtel”), one of India’s leading telecommunications

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

ED attaches Raj Kundra, Shilpa Shetty’s Rs 97 crore worth as

The Enforcement Directorate (ED) has seized businessman Raj Kundra's pro
 MOVERS & SHAKERS  Placeholder image
New Relic names Katrina Wong as CMO

New Relic names Katrina Wong as CMO

Clover Infotech appointed Subham Banerjee as CDO

Clover Infotech appointed Subham Banerjee as CDO

Clover Infotech has announced the appointment of Subham Banerjee as its Ch
Saviynt ropes in Sanjeevi Kumar as new Sales Director in India

Saviynt ropes in Sanjeevi Kumar as new Sales Director in India

The cloud-native identity and governance platform solutions provider Saviy
 OPEN YOUR EYES  Placeholder image

The demand for touch-less services are on huge demand
DIGITAL: THE NEXT REVOLUTION
Business continuity is the most valuable asset for financial institutions
Digital Strategies Focuses On Technology To Improve Business Performance
Entire communications is moving towards Webinar :Age of Discovery
 INTERVIEWS  Placeholder image
Kaspersky securing the digital landscape by offering enhanced

Kaspersky securing the digital landscape by offering enhanced

AMD Pensando innovation CONTINUES

AMD Pensando innovation CONTINUES

In 2022, AMD announced its acquisition of Pensando Systems, an addition to

D-Link in pursuit of building a more connected, smarter and co

D-Link in pursuit of building a more connected, smarter and co

D-Link is committed to the ‘Make in India’ vision. Aligned with this, t
 HOT PICK  Placeholder image
Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

Lenovo launches IdeaPad Pro 5i in India with Intel Core Ultra

COLORFUL rolls out an array of gaming laptops

COLORFUL rolls out an array of gaming laptops

COLORFUL launched its incredible series of COLORFUL EVOL P15 gaming laptop
Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies launches new AI-powered commercial PC portfo

Dell Technologies has launched the broadest portfolio of commercial AI lap
 MAKE IN INDIA BRANDS   Placeholder image
  STERLITE TECHNOLOGIES LTD.

  STERLITE TECHNOLOGIES LTD.


TEJAS NETWORKS INDIA PVT. LTD.  

TEJAS NETWORKS INDIA PVT. LTD.  


OPTIEMUS INFRACOM

OPTIEMUS INFRACOM


AGGRESSIVE ELECTRONICS MANUFACTURING SERVICES PVT. LTD. 

AGGRESSIVE ELECTRONICS MANUFACTURING SERVICES PVT. LTD. 


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

Securing and improving the security postures from leading security breaches

We are pioneers in cybersecurity with a track reco...

Redefining the business needs equipping with latest trends 

The development of connected vehicles and infrastr...

Embracing new-age technologies for ease of business

We are also implementing IoT in few factories this...

 ICONS OF INDIA  Placeholder image

Technology Icons Of India 2023: Kulmeet Bawa

Kulmeet Bawa resides as President & Managing Director, SAP Indian subc...

Technology Icons Of India 2023: Mukesh D. Ambani

An Indian billionaire businessman Mukesh Dhirubhai Ambani is currently...

Technology Icons Of India 2023: Amitabh Kant

Amitabh Kant is presently the G20 Sherpa of India during its Presidenc...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Iris Global Services prides itself in prioritizing customer’s needs and overcoming IT challenges

Considering India’s fast-growing economy, the future of the Indian IT indust...

Staying abreast with the latest technologies in this Digital age is the mantra to unlock business opportunities

The IT industry in India is witnessing a significant shift towards digital tra...

Arrow PC Network Empowering Businesses with Visionary Technology Solutions for a Brighter Future

Being in the IT Sector for more than 30 years, the Founder & MD of Arrow PC Ne...

 PSU  Placeholder image

TCIL continues to strengthen India with its technology expertise  

TCIL undertakes consultancy & turnkey projects in the field of Telecom...

ECIL continues to keep India ahead in the growth of Information Technology and Electronics  

ECIL played a very significant role in the training and growth of high...

BEL leveraging next generation technologies to keep the country ahead in Defence space  

Bharat Electronics Limited (BEL) is a Navratna PSU under the Ministry ...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2023 : Amazon Web Services (AWS)  

As the world’s most comprehensive and broadly adopted cloud, AWS offers over...

Most Trusted Brands 2023 : Oracle India Pvt. Ltd.  

Oracle offers a wide range of other enterprise software solutions, including m...

Most Trusted Brands 2023 : Zoom Communications Ltd.

A communications technology company headquartered in San Jose, California, Zoo...

 Value-Added Distribution  Value-Added Distribution

TECH DATA, A TD SYNNEX COMPANY

Tech Data Corporation was an American multinational distribution compa...

R P TECH INDIA

R P Tech is recognized for its  diverse products portfolio, value-add...

M. TECH SOLUTIONS (I) PVT. LTD.

M.Tech is a leading cyber security and network performance solutions ...

 ITFORUM 2024  
 WIITF 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 EMINENT CIO's OF INDIA   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
 TECHNOLOGY DISRUPTION Placeholder image

Quicker adoption of digital technologies is good for the Indian economy

Quicker adoption of digital technologies is good for the Indian economy

Growing acceptance of TikTok, worries Facebook and Youtube

Growing acceptance of TikTok, worries Facebook and Youtube

Rockwell Automation and Microsoft to leverage Generative AI capabilities

Rockwell Automation and Microsoft to leverage Generative AI capabilities

Synechron and Campus Pride Partner to Promote and Align Diversity Initiatives

Synechron and Campus Pride Partner to Promote and Align Diversity Initiatives

 UNICORNS REVOLUTIONISING Placeholder image

Honasa Consumer Private Limited

Honasa Consumer Private Limited

One MobiKwik Systems Private Limited

One MobiKwik Systems Private Limited

Builder.ai

Builder.ai

Think and Learn private limited

Think and Learn private limited


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW