Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs
April 6, 2023Rewterz Corporate Iftar Dinner 2023
April 6, 2023Rewterz Threat Alert – STOP (DJVU) Ransomware – Active IOCs
April 6, 2023Rewterz Corporate Iftar Dinner 2023
April 6, 2023Severity
High
Analysis Summary
CVE-2023-20117 CVSS:7.2
Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow a remote authenticated attacker to execute arbitrary commands on the system, caused by improper validation of user-supplied input. By sending a specially crafted input, an attacker could exploit this vulnerability to execute arbitrary commands as the root user on the underlying Linux operating system.
CVE-2023-20128 CVSS:7.2
Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers could allow a remote authenticated attacker to execute arbitrary commands on the system, caused by improper validation of user-supplied input. By sending a specially crafted input, an attacker could exploit this vulnerability to execute arbitrary commands as the root user on the underlying Linux operating system.
Impact
- Command Execution
Indicators Of Compromise
CVE
- CVE-2023-20117
- CVE-2023-20128
Affected Vendors
Cisco
Affected Products
- Cisco RV320 Dual Gigabit WAN VPN Routers
- Cisco RV325 Dual Gigabit WAN VPN Routers
Remediation
Refer to Cisco Security Advisory for patch, upgrade or suggested workaround information.