CVE-2019-1653

unknown KEV

Published 2021-11-03 · Modified 2021-11-03

CVSS v3

—

CVSS v2

—

VIR risk

1.5

Description

Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers contain improper access controls for URLs. Exploitation could allow an attacker to download the router configuration or detailed diagnostic information.

CISA KEV

Vendor: Cisco
Product: Small Business RV320 and RV325 Routers
Due date: 2022-05-03

Predictions

Exploit likelihood

99%

Patch ETA

—

Heuristic predictions, AS-IS, for prioritization only.

Mitigations

vendor Authored 2026-05-27

Vendor advisory: cisa-kev — https://nvd.nist.gov/vuln/detail/CVE-2019-1653

Exploits

References

https://nvd.nist.gov/vuln/detail/CVE-2019-1653

Verify integrity in audit chain (admin only). AS-IS.