Cisco fixed this issue in firmware release 4.2.3.10, which also includes a fix for a newly disclosed high-severity bug affecting the RV016, RV042, RV042G, and RV082 routers.

Two Cisco product families are affected by these flaws. One affected product is Cisco’s small business RV series routers – specifically, the RV016, RV042, RV042G, RV082, RV320, and RV325 models.

To note, the Cisco RV320/RV325 router vulnerabilities were discovered back in September 2018. Four months later a patch was issued that simply blacklisted curl.

The issue affects a range of Cisco Wireless-N and Wireless-AC VPN routers, which reached end-of-life in September of 2019. Cisco stopped issuing bug fixes on Dec. 1 of last year.

Within the midrange router line, Cisco introduced a series of enhancements to its Cisco 7200, 7300, 7400, 7500 and 7600 Series routers.