What is CVE-2019-1653?

CVE-2019-1653 is a high-severity vulnerability in Cisco Small Business Rv Series Router Firmware, classified under Improper Access Control. CVSS score: 7.5/10. Published 2019-01-24.

How severe is CVE-2019-1653?

High severity. CVSS v3 base score is 7.5 out of 10.

Is CVE-2019-1653 known to be exploited?

Yes. CVE-2019-1653 is listed in the CISA Known Exploited Vulnerabilities catalog (added 2021-11-03), indicating it is being actively exploited. 33 public proof-of-concept repositories are indexed.

Vulnerability in Cisco Small Business Rv Series Router Firmware

CVE-2019-1653

A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an unauthenticated, remote attacker to retrieve sensitive information. The vulnerability is due to impro…

EPSS: 0.944 (100.0th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Cisco Small Business Rv Series Router Firmware — versions n/a

Weakness classification (CWE)

CWE-284 — Improper Access Control

CISA KEV (Known Exploited Vulnerabilities)

This CVE is on the CISA KEV catalog, added on 2021-11-03. CISA KEV inclusion means CISA has confirmed in-the-wild exploitation; US federal agencies are required to remediate within a published due date.

BOD 22-01 due date: 2022-05-03.

Required action: Apply updates per vendor instructions.

Public proof-of-concept exploits

References

www.youtube.com/watch (x_refsource_MISC)
badpackets.net/over-9000-cisco-rv320-rv325-routers-vulnerable-to-cve-2019-1653/ (x_refsource_MISC)
20190123 Cisco Small Business RV320 and RV325 Routers Information Disclosure Vulnerability (vendor-advisory, x_refsource_CISCO)
106732 (vdb-entry, x_refsource_BID)
46262 (exploit, x_refsource_EXPLOIT-DB)
20190327 [RT-SA-2019-004] Cisco RV320 Unauthenticated Diagnostic Data Retrieval (mailing-list, x_refsource_FULLDISC)
20190327 [RT-SA-2019-003] Cisco RV320 Unauthenticated Configuration Export (mailing-list, x_refsource_FULLDISC)
20190327 [RT-SA-2019-004] Cisco RV320 Unauthenticated Diagnostic Data Retrieval (mailing-list, x_refsource_BUGTRAQ)
20190327 [RT-SA-2019-003] Cisco RV320 Unauthenticated Configuration Export (mailing-list, x_refsource_BUGTRAQ)
packetstormsecurity.com/files/152260/Cisco-RV320-Unauthenticated-Configuration-… (x_refsource_MISC)

Frequently asked questions

What is CVE-2019-1653?: CVE-2019-1653 is a high-severity vulnerability in Cisco Small Business Rv Series Router Firmware, classified under Improper Access Control. CVSS score: 7.5/10. Published 2019-01-24.
How severe is CVE-2019-1653?: High severity. CVSS v3 base score is 7.5 out of 10.
Is CVE-2019-1653 known to be exploited?: Yes. CVE-2019-1653 is listed in the CISA Known Exploited Vulnerabilities catalog (added 2021-11-03), indicating it is being actively exploited. 33 public proof-of-concept repositories are indexed.