PT-2016-4773 · Cisco+1 · Cisco Aironet Access Point+1

Published

2016-06-08

Updated

2016-06-15

CVE-2016-1418

CVSS v3.1

7.8

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Name of the Vulnerable Software and Affected Versions Cisco Aironet Access Point Software version 8.2(100.0)

Description The issue allows local users to obtain Linux root access via crafted CLI command parameters.

Recommendations For Cisco Aironet Access Point Software version 8.2(100.0), consider restricting access to the CLI to minimize the risk of exploitation until a patch is available.

Fix

RCE

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-20

Related Identifiers

CVE-2016-1418

Affected Products

Cisco Aironet Access Point

Linux

PT-2016-4773 · Cisco+1 · Cisco Aironet Access Point+1

CVE-2016-1418

Weakness Enumeration

Related Identifiers

Affected Products

References · 4