CVE-2019-1653

CVE Database · CVE-2019-1653

CVE-2019-1653

· HIGHAnalyzed

CVSS v3.1

7.5

EPSS

99.88%

Published

Jan 24, 2019

Modified

Oct 28, 2025

CISA Known Exploited Vulnerability

Added: 2021-11-03 · Due: 2022-05-03

Apply updates per vendor instructions.

Public PoC / Exploit (8)

All weaponized →

Exploit-DBCisco RV320 and RV325 - Unauthenticated Remote Code Execution (Metasploit)Exploit-DBCisco RV300 / RV320 - Information Disclosure NucleiNuclei detection template TrickestTrickest PoC index GitHub PoCshaheemirza/CiscoSpill★4 GitHub PoCdubfr33/CVE-2019-1653★1 GitHub PoCibrahimzx/CVE-2019-1653★1 GitHub PoCelzerjp/nuclei-CiscoRV320Dump-CVE-2019-1653★0

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in the web-based management interface of Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow an unauthenticated, remote attacker to retrieve sensitive information. The vulnerability is due to improper access controls for URLs. An attacker could exploit this vulnerability by connecting to an affected device via HTTP or HTTPS and requesting specific URLs. A successful exploit could allow the attacker to download the router configuration or detailed diagnostic information. Cisco has released firmware updates that address this vulnerability.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Weaknesses (CWE)

CWE-284

Affected Products (6)

cisco · rv320_firmwarevulnerable

cisco · rv320

cisco · rv325_firmwarevulnerable

cisco · rv325

References (20)

http://packetstormsecurity.com/files/152260/Cisco-RV320-Unauthenticated-Configuration-Export.html

ExploitThird Party AdvisoryVDB Entry