CVE-2019-1653

This Metasploit module exploits CVE-2019-1653 (info disclosure) and CVE-2019-1652 (command injection) to achieve unauthenticated RCE on Cisco RV320/RV325 routers. It downloads credentials via config export, logs in, and injects a command via certificate generation.

This exploit targets CVE-2019-1653, an information disclosure vulnerability in Cisco RV300/RV320 routers. It sends a GET request to '/cgi-bin/config.exp' to retrieve sensitive configuration data without authentication.

The repository contains a functional bash script that exploits CVE-2019-1653 to extract sensitive information (including passwords) from Cisco RV320 and RV325 routers via an unauthenticated HTTP request to a vulnerable endpoint.

This repository contains a functional Python exploit for CVE-2019-1653, which targets Cisco Small Business RV320 and RV325 routers. The exploit first retrieves credentials via an information disclosure vulnerability and then performs a command injection to enable a telnet service for remote access.

This repository contains an NSE script for Nmap to scan for Cisco routers vulnerable to CVE-2019-1653, which is a buffer overflow vulnerability in the web-based management interface. The script checks for the presence of the vulnerability by sending crafted requests to the target host on port 443.

The repository contains a functional Python exploit for CVE-2019-1821, which targets a directory traversal vulnerability in Cisco Prime Infrastructure's Health Monitor HA TarArchive feature. The exploit crafts a malicious tar archive to deploy a JSP backdoor, enabling unauthenticated remote code execution.

This repository provides a Nuclei template to detect exposed Cisco router configuration files (CVE-2019-1653) by checking for the presence of `/cgi-bin/config.exp` and extracting credentials. It includes a detailed guide for using Shodan and Nuclei to identify vulnerable devices.

This repository contains functional exploit code for CVE-2019-1653 and CVE-2019-1652, targeting Cisco RV320/RV325 routers. It includes scripts for dumping configurations, debug data, decrypting encrypted files, and achieving post-authentication RCE via command injection.

This Metasploit module exploits an improper access control vulnerability in Cisco RV320/RV325 routers to retrieve sensitive configuration files without authentication. It sends an HTTP GET request to a specific URI to download the router's configuration, which may include credentials and other sensitive data.

This Metasploit module exploits CVE-2019-1653 (info disclosure) and CVE-2019-1652 (command injection) to achieve unauthenticated RCE on Cisco RV320/RV325 routers. It downloads the config to extract credentials, logs in, and injects a command via the certificate generation page to fetch and execute a payload.