Name of the Vulnerable Software and Affected Versions Cisco Small Business RV160, RV260, and RV340 (affected versions not specified)

Description The issue is related to the use of hardcoded password hashes for users root, debug-admin, cisco, admin, and guest. This could allow a remote attacker to elevate their privileges.

Recommendations For Cisco Small Business RV160, RV260, and RV340, consider changing the default passwords for the affected user accounts as a temporary mitigation measure. Restrict access to the devices until a fix is available to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.