CVE-2019-15260

Name of the Vulnerable Software and Affected Versions Cisco Aironet Access Points (APs) Software versions (affected versions not specified)

Description A vulnerability in Cisco Aironet Access Points Software could allow an unauthenticated, remote attacker to gain unauthorized access to a targeted device with elevated privileges. The issue is due to insufficient access control for certain URLs on an affected device. An attacker could exploit this by requesting specific URLs from an affected AP, potentially gaining access to view sensitive information, replace some configuration options, and disable the AP, creating a denial of service condition.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.