A weekly recap of pertinent security events you need to be aware of and can read in 7 seconds (or so...)

Using End-of-Life Cisco Small Business Routers?

Do this: Replace them immediately.
Why: Three vulnerabilities have been released that Cisco states it will not patch as they are "end-of-life". Specifically, the Cisco Small Business RV110W, RV130, RV130W, and RV215W Routers are affected by the following CVEs:

  • CVE 2021-1137 (Critical)
  • CVE 2021-1479 (Critical)
  • CVE 2021-1480 (Critical)
Additional Info: "A successful exploit could allow the attacker to execute arbitrary code as the root user on the underlying operating system of the affected device." -https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-rv-rce-q3rxHnvm


About the Author

Matt Barnett, CISSP, GFCA
Chief Strategist & Cofounder

After years in IT, performing network and system administration, software development, and architecting cloud migrations, Matt began to focus his efforts in cybersecurity. Matt draws on his technical competency and law enforcement background to assist clients, in both proactive and incident response capacities. In addition, Matt has developed an arsenal of applications, strategies, policies, and procedures to assist clients in achieving better cybersecurity.