We received a notice of a vulnerability from AT&T FirstNet on one of our RV55s. The CVEs,
CVE-2015-9251
CVE-2020-11022
CVE-2019-11358
CVE-2020-11023
all are about versions of jQuery before 3.5.0 The current 4.16.2 firmware has jQuery 1.11.0.
These devices have to be exposed to the public internet .