Cisco RV320 or RV325 Dual Gigabit WAN VPN routers are vulnerable to two high-severity router vulnerabilities in the wild. The vulnerabilities in question are a command injection flaw (assigned CVE-2019-1652) and an information disclosure flaw. At least 9,657 Cisco routers (6,247 RV320 and 3,410 RV325) worldwide that are vulnerable, most of which located in the United States. The flaw doesn’t require any authentication to reach the router’s web-based management portal, allowing attackers to retrieve sensitive information.
Source: https://thehackernews.com/2019/01/hacking-cisco-routers.html