CVE-2019-15266

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller (WLC) Software (affected versions not specified)

Description A vulnerability in the CLI of Cisco Wireless LAN Controller (WLC) Software could allow an authenticated, local attacker to view system files that should be restricted. This issue is due to improper sanitization of user-supplied input in command-line parameters that describe filenames. An attacker could exploit this by using directory traversal techniques to submit a path to a desired file location, potentially allowing them to view system files containing sensitive information.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.