HTTP: Cisco RV320 and RV325 Routers Information Disclosure
This signature detects attempts to exploit a known vulnerability against Cisco RV320 and RV325. A successful attack can lead to sensitive information disclosure.
Extended Description
A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an unauthenticated, remote attacker to retrieve sensitive information. The vulnerability is due to improper access controls for URLs. An attacker could exploit this vulnerability by connecting to an affected device via HTTP or HTTPS and requesting specific URLs. A successful exploit could allow the attacker to download the router configuration or detailed diagnostic information. Cisco has released firmware updates that address this vulnerability.
Short Name
HTTP:CISCO:RV320-RV325-INFO-DIS
Severity
Minor
Recommended
False
Recommended Action
None
Category
HTTP
Keywords
CVE-2019-1653 Cisco Disclosure Information RV320 RV325 Routers and bid:106732
Release Date
10/20/2020
Supported Platforms
srx-branch-12.3
srx-19.3
srx-branch-19.3
vsrx3bsd-19.2
srx-branch-19.4
vsrx-19.4
mx-12.3
mx-19.4
vmx-19.4
mx-19.3
vsrx3bsd-19.4
srx-19.4
vsrx-12.3
vmx-19.3
vsrx-19.2
srx-12.3
Sigpack Version
3459
False Positive
Unknown
CVSS Score
5.0