Thursday 18 March 2021
The impact of this issue announcement is high. Please act accordingly to rectify the issue, as stated below.
This vulnerability affects the following Cisco devices:
- RV132W ADSL2+ Wireless-N VPN Routers if they are running a firmware release earlier than Release 22.214.171.124
- RV134W VDSL2 Wireless-AC VPN Routers if they are running a firmware release earlier than Release 126.96.36.199
What you need to know:
Cisco has released a patch for an issue in the routers’ web-based management interface (CVE-2021-1287) present in “networking-in-the-box” models RV132Q ADSL2+ Wireless-N VPN routers and RV134Q VDSL2 Wireless-AC VPN routers.
Actions to be taken:
Cisco fixed this vulnerability in the following Cisco products:
- RV132W ADSL2+ Wireless-N VPN Routers firmware releases 188.8.131.52 and later
- RV134W VDSL2 Wireless-AC VPN Routers firmware releases 184.108.40.206 and later
Users are advised to update to the above recommended versions.