The flaws exist in the web-based management interface of Cisco s small-business lineup of VPN routers. These specific router models, which range in price from $150 to $250, are purpose-built for small- and medium-sized businesses. The flaws could be exploited by unauthenticated, remote attackers to view or tamper with data, and perform other unauthorized actions on the routers. Cisco did not detail each of the flaws but did say that the flaws have a base CVSS score of 9.8 out of 10 (making them critical in severity)
Source: https://threatpost.com/cisco-flaws-vpn-routers-rce/163662/