Security experts report several critical and high severity flaws in the CISCO Small Business Routers. The RV110W, RV130W and RV215W models include a default account that can be exploited by attackers to gain root access to the device. The default account should normally have least privileges, but in the RV series it has root privileges. A remote authenticated attacker can exploit the flaw in the web interface to execute arbitrary code with root privileges, according to CISCO. The good news is that CISCO is not aware of any attacks involving the above vulnerabilities.”]
Source: https://securityaffairs.co/wordpress/49992/breaking-news/cisco-small-business-routers-flaws.html