Cisco says it will not patch three small business router models and one VPN firewall device with critical vulnerabilities. The bug, rated 9.8 in severity out of 10, could allow unauthenticated remote users to hijack targeted equipment and gain elevated privileges within effected systems. The three Cisco router models (RV215W, RV130, and RV130W) are of varying age and have reached end of life and will not be patched. The company is advising customers to replace the equipment. Cisco also warned of second critical bug, with a severity rating of 9. 8, that impacts its Cisco SD-WAN vManage software.
Source: https://threatpost.com/zero-day-bug-soho-routers/165321/