1. Home
  2. CVE Database
  3. CVE-2016-1418
HIGH · 7.8

CVE-2016-1418

Cisco Aironet Access Point Software 8.2(100.0) on 1830e, 1830i, 1850e, 1850i, 2800, and 3800 access points allows local users to obtain Linux root access via crafted CLI command parameters, aka Bug ID...

Vulnerability Description

Cisco Aironet Access Point Software 8.2(100.0) on 1830e, 1830i, 1850e, 1850i, 2800, and 3800 access points allows local users to obtain Linux root access via crafted CLI command parameters, aka Bug ID CSCuy64037.

CVSS Score

7.8

HIGH

CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Attack Vector
LOCAL
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
UNCHANGED
Confidentiality
HIGH
Integrity
HIGH
Availability
HIGH

Affected Products

VendorProductVersions
CiscoAironet 1830E-
CiscoAironet 1830I-
CiscoAironet 1850E-
CiscoAironet 1850I-
CiscoAironet 2800-
CiscoAironet 3800-
CiscoAironet Access Point Software 8.2_\(100.0\)

Related Weaknesses (CWE)

CWE-20

References

FAQ

What is CVE-2016-1418?

CVE-2016-1418 is a vulnerability with a CVSS score of 7.8 (HIGH). Cisco Aironet Access Point Software 8.2(100.0) on 1830e, 1830i, 1850e, 1850i, 2800, and 3800 access points allows local users to obtain Linux root access via crafted CLI command parameters, aka Bug ID...

How severe is CVE-2016-1418?

CVE-2016-1418 has been rated HIGH with a CVSS base score of 7.8/10. Review the CVSS metrics above for detailed severity breakdown.

Is there a patch for CVE-2016-1418?

Check the references section above for vendor advisories and patch information. Affected products include: Cisco Aironet 1830E, Cisco Aironet 1830I, Cisco Aironet 1850E, Cisco Aironet 1850I, Cisco Aironet 2800.