Date: 3 February 2022
On 2 February 2022 Cisco published Security Advisories to address vulnerabilities in multiple products. Included were critical patches for the following:
- Cisco Small Business RV series routers – multiple models and versions
Exploitation of these vulnerabilities could result in arbitrary code execution, privilege escalation, arbitrary command execution, authentication bypass, denial of service and the ability to fetch and run unsigned software.
Cisco PSIRT has stated that proof-of-concept exploit code is available for several of these vulnerabilities.
The Cyber Centre encourages users and administrators to review the provided web links and apply the necessary updates.