A vulnerability in the authentication functionality of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to bypass authentication controls and log in to the device through the management interface This vulnerability is due to the improper implementation of the password validation algorithm. An attacker could exploit this vulnerability by logging in to an affected device with crafted credentials. A successful exploit could allow the attacker to bypass authentication and log in to the device as an administrator. The attacker could obtain privileges that are the same level as an administrative user but it depends on the crafted credentials. Note: This vulnerability exists because of a non-default device configuration that must be present for it to be exploitable. For details about the vulnerable configuration, see the Vulnerable Products section of this advisory.
oryginał ENCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:HCisco 3504 Wireless Controller
HWCiscowszystkie wersjeCisco 5520 Wireless Controller
HWCiscowszystkie wersjeCisco 8540 Wireless Controller
HWCiscowszystkie wersjeCisco Aironet 1540
HWCiscowszystkie wersjeCisco Aironet 1542d
HWCiscowszystkie wersjeCisco Aironet 1542i
HWCiscowszystkie wersjeCisco Aironet 1560
HWCiscowszystkie wersjeCisco Aironet 1562d
HWCiscowszystkie wersjeCisco Aironet 1562e
HWCiscowszystkie wersjeCisco Aironet 1562i
HWCiscowszystkie wersjeCisco Aironet 1815
HWCiscowszystkie wersjeCisco Aironet 1815i
HWCiscowszystkie wersjeCisco Aironet 1815m
HWCiscowszystkie wersjeCisco Aironet 1815t
HWCiscowszystkie wersjeCisco Aironet 1815w
HWCiscowszystkie wersjeCisco Aironet 1830
HWCiscowszystkie wersjeCisco Aironet 1830e
HWCiscowszystkie wersjeCisco Aironet 1830i
HWCiscowszystkie wersjeCisco Aironet 1832
HWCiscowszystkie wersjeCisco Aironet 1850
HWCiscowszystkie wersjeCisco Aironet 1850e
HWCiscowszystkie wersjeCisco Aironet 1850i
HWCiscowszystkie wersjeCisco Aironet 1852
HWCiscowszystkie wersjeCisco Aironet 2800
HWCiscowszystkie wersjeCisco Aironet 2800e
HWCiscowszystkie wersjeCisco Aironet 2800i
HWCiscowszystkie wersjeCisco Aironet 3800
HWCiscowszystkie wersjeCisco Aironet 3800e
HWCiscowszystkie wersjeCisco Aironet 3800i
HWCiscowszystkie wersjeCisco Aironet 3800p
HWCiscowszystkie wersje
Powiązane podatności
A vulnerability in Cisco Aironet Access Points (APs) Software could allow an unauthenticated, remote attacker ...
A vulnerability in the web-based GUI of Cisco Mobility Express 1800 Series Access Points could allow an unauth...
A vulnerability in the authentication functionality of Cisco Wireless LAN Controller (WLC) AireOS Software cou...
A vulnerability in the WLAN Control Protocol (WCP) implementation for Cisco Aironet Access Point (AP) software...
A vulnerability in the SSH management feature of multiple Cisco Access Points (APs) platforms could allow a lo...