CVE-2019-1652

unknown KEV

Published 2022-03-03 · Modified 2022-03-03

CVSS v3

—

CVSS v2

—

VIR risk

1.5

Description

A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an authenticated, remote attacker with administrative privileges on an affected device to execute arbitrary commands.

CISA KEV

Vendor: Cisco
Product: Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers
Due date: 2022-03-17

Predictions

Exploit likelihood

99%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: cisa-kev — https://nvd.nist.gov/vuln/detail/CVE-2019-1652

Exploits

References

https://nvd.nist.gov/vuln/detail/CVE-2019-1652

Verify integrity in audit chain (admin only). AS-IS.