Wu Linjie

**Name of the Vulnerable Software and Affected Versions** Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers (affected versions not specified) **Description** A vulnerability in the session management functionality of the web-based interface could allow an unauthenticated, remote attacker to hijack a valid user session on an affected system. The attacker could use this impersonated session to create a new user account or control the device with the privileges of the hijacked session. This is due to a lack of proper session management controls. An attacker could exploit this by sending a crafted HTTP request to a targeted device, allowing them to take control of an existing user session if an authorized user session is active. **Recommendations** For Cisco Small Business RV320 and RV325 Dual Gigabit WAN VPN Routers, as a temporary workaround, consider restricting access to the web-based interface until a patch is available. Avoid using the web-based interface for critical operations until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.