Download Certificate- Most Promising Partner | ECIO | Most Admired Brand | Most Trusted Company

New vulnerabilities Threatens Over 9,000 Hackable Cisco RV320/RV325 Routers Worldwide


By MYBRANDBOOK


New vulnerabilities Threatens Over 9,000 Hackable Cisco RV320/RV325 Routers Worldwide

 

If you are using Cisco RV320 or RV325 Dual Gigabit WAN VPN routers in your organization for connectivity and security, then you should immediately install the latest firmware update released by the vendor last week. The hackers have actively been exploiting two newly patched high-severity router vulnerabilities in the wild after a security researcher released their proof-of-concept exploit code on the Internet last weekend

 

Out of these vulnerabilities, one of them are a command injection flaw and another is an information disclosure flaw, a combination of which could allow a remote attacker to take full control of an affected Cisco router. The first issue exists in RV320 and RV325 dual gigabit WAN VPN routers running firmware versions 1.4.2.15 through 1.4.2.19, and the second affects firmware versions 1.4.2.15 and 1.4.2.17, according to the Cisco’s advisory. Both the vulnerabilities, discovered and responsibly reported to the company by German security firm RedTeam Pentesting, actually resides in the web-based management interface used for the routers and are remotely exploitable.

 

The first vulnerabilities, code name CVE-2019-1652, which can allows an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands on the system. The second one as code name CVE-2019-1653 doesn't require any authentication to reach the router's web-based management portal, allowing attackers to retrieve sensitive information including the router's configuration file containing MD5 hashed credentials and diagnostic information. 

 

The PoC exploit code targeting Cisco RV320/RV325 routers published on the Internet first exploits CVE-2019-1653 to retrieve the configuration file from the router to obtain its hashed credentials and then exploits CVE-2019-1652 to execute arbitrary commands and gain complete control of the affected device. Researchers from cybersecurity firm Bad Packets said they found at least 9,657 Cisco routers (6,247 RV320 and 3,410 RV325) worldwide that are vulnerable to the information disclosure vulnerability, most of which located in the United States.

 

The firm shared an interactive map, showing all vulnerable RV320/RV325 Cisco routers in 122 countries and on the network of 1,619 unique internet service providers. Bad Packets said its honeypots detected opportunistic scanning activity for vulnerable routers from multiple hosts from Saturday, suggesting the hackers are actively trying to exploit the flaws to take full control of the vulnerable routers.

 

The best way to protect yourself from becoming the target of one such attack is to install the latest Cisco RV320 and RV325 Firmware release 1.4.2.20 as soon as possible.

 

Administrators who have not yet applied the firmware update are highly recommended to change their router's admin and WiFi credentials considering themselves already compromised.

 
 BREAKING NEWS  BREAKING NEWS
Cisco announces AI-native secure Wi-Fi 7 for future-ready employe

Cisco announces AI-native secure Wi-Fi 7 for future-ready employe...

Announcing a major leap in wireless technology, Cisco has launched its Wi...

The BSE benchmark Sensex tumbled over 800 points, leaving investo

The BSE benchmark Sensex tumbled over 800 points, leaving investo...

The BSE benchmark Sensex recently experienced a significant drop, tumblin...

North Korean GPS Interference Disrupts Air Traffic

North Korean GPS Interference Disrupts Air Traffic...

South Korea's military has publicly accused North Korea of disrupting GP...

US ordered TSMC to halt chip shipments to China

US ordered TSMC to halt chip shipments to China...

TSMC has had regular discussions with the government on export control issu...

 TECHNO TRENDS  Placeholder image
Nazara and ONDC set to transform in-game monetization with ‘

Nazara and ONDC set to transform in-game monetization with ‘

Nazara Technologies has teamed up with the Open Network for Digital Comme...

Jio Platforms and NICSI to offer cloud services to government

Jio Platforms and NICSI to offer cloud services to government

In a collaborative initiative, the National Informatics Centre Services In...

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

BSNL awards ₹5,000 Cr Project to RVNL-Led Consortium

A syndicate led by Rail Vikas Nigam Limited (abbreviated as RVNL), along wi...

Pinterest tracks users without consent, alleges complaint

Pinterest tracks users without consent, alleges complaint

A recent complaint alleges that Pinterest, the popular image-sharing platf...

 E-Magazine 
 TECHNOTAINMENT  Placeholder image
Eloelo teams up with Elvish Yadav for India's biggest digital

Eloelo teams up with Elvish Yadav for India's biggest digital

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix adds 'Moments' feature for saving, sharing scenes from

Netflix has introduced a new “Moments” feature on its mobile app, whic
Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez come together with YouTuber Mr. Beast for

Jacqueline Fernandez has partnered with American YouTuber Mr. Beast to b
 MOVERS & SHAKERS  Placeholder image
Kamal Nath quits SIFY Technologies

Kamal Nath quits SIFY Technologies

Visa elevates Rishi Chhabra as new Country Manager for India

Visa elevates Rishi Chhabra as new Country Manager for India

Rishi holds a Master’s in Industrial Engineering from The Ohio State Univ
Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys welcomes Albert Nel as Senior VP and Regional Sales Le

Genesys continues to deepen its investment in the APAC region. Earlier this
 OPEN YOUR EYES  Placeholder image

Technology empowering people stay connected in un-touch world
Artificial Intelligence and Cyber-security are key pillars of Digitization
The disruption in the technology demands to ensure business continuity
Chinese Investments targets start-ups to scale up in India
It is time to protect your critical business priorities from attackers
 INTERVIEWS  Placeholder image
Alpha Max offers high end solutions in the network space to en

Alpha Max offers high end solutions in the network space to en

AMD Pensando driving innovation in the DPU architecture space

AMD Pensando driving innovation in the DPU architecture space

AMD Pensando stands out in the DPU (Data Processing Unit) market with its u
Bolstering its commitment to help build a truly self-reliant B

Bolstering its commitment to help build a truly self-reliant B

CP PLUS is dedicated to spreading a sense of security to every corner of In
 HOT PICK  Placeholder image
BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

BOULT unveils AmpVault V10 & V20 powerbanks: Fast charging, sa

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall Launches TZ80: A Powerful Solution for Remote Office

SonicWall announced today the launch of the TZ80, a groundbreaking securit
Gigabyte X3D Turbo: A Gaming Revolution

Gigabyte X3D Turbo: A Gaming Revolution

GIGABYTE X3D Turbo Mode is a cutting-edge feature that unifies cores distr
 MAKE IN INDIA BRANDS   Placeholder image
VEHERE INTERACTIVE PVT. LTD.

VEHERE INTERACTIVE PVT. LTD.


TATA CONSULTANCY SERVICES

TATA CONSULTANCY SERVICES


GLOBUS INFOCOM LTD.

GLOBUS INFOCOM LTD.


LUMINOUS POWER TECHNOLOGIES PVT. LTD.

LUMINOUS POWER TECHNOLOGIES PVT. LTD.


 EMINENT CIO'S OF INDIA  EMINENT CIO'S OF INDIA

PRIORITIZING APPROPRIATE DATA MANAGEMENT AND ETHICAL AI IS THE NEED OF THE HOUR

For us, cultivating customer trust amidst for that...

GAINING CUSTOMERS’ TRUST IS ESSENTIAL FOR SMOOTH OMNICHANNEL INTERACTIONS

In the fiscal year 2024-25, our organization has i...

USING AI & BI OFFERINGS TO ADDRESS CLIENT NEEDS

In the fiscal year 2024-25, Assisto Technologies h...

 ICONS OF INDIA  Placeholder image

Icons Of India : Kumar Mangalam Birla

Aditya Birla Group chairman Kumar Mangalam Birla recently made a comeb...

Icons Of India : Arjun Malhotra

Arjun Malhotra, the Chairman of Magic Software Inc., is widely recogni...

SHAKTIKANTA DAS

Shaktikanta Das is serving as the current & 25th governor of the Reser...

 PARTNER SPEAKERS  EMINENT CIO'S OF INDIA

Hybrid Multicloud - The De Facto Industry Standard

In 2019, the world generated 4.4 zettabytes of data. In one year, it increased...

Fostering Positive Relationships and Enhancing Customer Satisfaction

Bloom Electronics’ data-driven insights for strategic brand decision and bra...

Enhanced Skills & Expertise helping to better serve customers and stay ahead of the curve

Feedback Forms: Conducting surveys and collecting feedback from customers is a...

 PSU  Placeholder image

BEL - Bharat Electronics Limited

BEL is an Indian Government-owned aerospace and defence electronics co...

BSE - Bombay Stock Exchange  

The Bombay Stock Exchange (BSE) is one of India’s largest and oldest...

IOCL - Indian Oil Corporation Ltd.  

IOCL is India’s largest oil refining and marketing company ...

 VIDEOS  Placeholder image

 Top 25 Brands  Solution partners

Most Trusted Brands 2024: HCL TECHNOLOGIES LTD.

HCL Technologies Ltd. (HCLTech) has been at the forefront of technological inn...

RELIANCE JIO INFOCOMM LTD.

Reliance Jio commonly known as Jio, has been a significant disruptor in the te...

Most Trusted Brands 2024 : Oracle Corporation 

Oracle focuses on secure enterprise software, and cloud solutions to build str...

 Global Indian industry   Value-Added Distribution

Indian Tech Talent Excelling The Tech World - RAVI KUMAR S, CEO- Cognizant

Ravi Kumar S, appointed as CEO of Cognizant in January 2023, sets the ...

Indian Tech Talent Excelling The Tech World - Thomas Kurian, CEO- Google Cloud

Thomas Kurian, the CEO of Google Cloud, has been instrumental in expan...

Indian Tech Talent Excelling The Tech World - Steve Sanghi, Executive Chair, Microchip

Steve Sanghi, the Executive Chair of Microchip Technology, has been a ...

 STARNITE AWARDS 2024  
 ITFORUM 2024  
   
 CMO of the Year   Placeholder image
 WOMEN LEADERSHIP  Placeholder image
 IMAGE GALLERY   Placeholder image
 TRENDS IN TECHNOLOGY  Placeholder image
MORE VIDEOS  Placeholder image
Brand Book
Brand Book
Brand Book
Brand Book
 ADVERTISEMENTS  Placeholder image
Brandbook Brandbook
 TECHNOLOGY DISRUPTION Placeholder image

Delhi & NCR Vi customers to enjoy stronger indoor 4G connectivity

Delhi & NCR Vi customers to enjoy stronger indoor 4G connectivity

ChatGPT Can Fix Bugs in Computer Code

ChatGPT Can Fix Bugs in Computer Code

Headcount downsizes attributed largely due to increased automation

Headcount downsizes attributed largely due to increased automation

VMware partners with IIT Bombay to create a cohesive platform to influence and advance Systems Research practice in India

VMware partners with IIT Bombay to create a cohesive platform to influence and advance Systems Research practice in India

 UNICORNS REVOLUTIONISING Placeholder image

Blink Commerce Private Limited

Blink Commerce Private Limited

Druva Inc.

Druva Inc.

BrowserStack

BrowserStack

InCred Financial Services Limited

InCred Financial Services Limited


Copyright www.mybrandbook.co.in @1999-2024 - All rights reserved.
Reproduction in whole or in part in any form or medium without express written permission of Kalinga Digital Media Pvt. Ltd. is prohibited.
Other Initiatives : www.varindia.com | www.spoindia.org
ADMIRED BRANDS

AFTER MARKET SERVICES

CATEGORIES

DISTRIBUTORS & VADs
GOVERNMENT BODIES

INDUSTRY BODIES

MAKE IN INDIA

CONTACT US

SUBSCRIBE NOW