A vulnerability in the web-based GUI of Cisco Mobility Express 1800 Series Access Points could allow an unauthenticated, remote attacker to bypass authentication. The attacker could be granted full administrator privileges. The vulnerability is due to improper implementation of authentication for accessing certain web pages using the GUI interface. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web interface of the affected system. A successful exploit could allow the attacker to bypass authentication and perform unauthorized configuration changes or issue control commands to the affected device. This vulnerability affects Cisco Mobility Express 1800 Series Access Points running a software version prior to 8.2.110.0. Cisco Bug IDs: CSCuy68219.
oryginał ENCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HCisco Aironet 1810
HWCiscowszystkie wersjeCisco Aironet 1810w
HWCiscowszystkie wersjeCisco Aironet 1815i
HWCiscowszystkie wersjeCisco Aironet 1830e
HWCiscowszystkie wersjeCisco Aironet 1830i
HWCiscowszystkie wersjeCisco Aironet 1850e
HWCiscowszystkie wersjeCisco Aironet 1850i
HWCiscowszystkie wersjeCisco Aironet Access Point Software
OSCisco8.1\(112.3\)8.1\(112.4\)8.1\(131.0\)8.1\(15.14\)
Powiązane podatności
A vulnerability in the authentication functionality of Cisco Wireless LAN Controller (WLC) Software could allo...
A vulnerability in IP ingress packet processing of the Cisco Embedded Wireless Controller with Catalyst Access...
A vulnerability in the WLAN Control Protocol (WCP) implementation for Cisco Aironet Access Point (AP) software...
A vulnerability in the SSH management feature of multiple Cisco Access Points (APs) platforms could allow a lo...
A vulnerability in the FlexConnect Upgrade feature of Cisco Aironet Series Access Points Software could allow ...