CVE-2016-6362

EUVD-2016-7285
Cisco Aironet 1800, 2800, and 3800 devices with software before 8.2.110.0, 8.2.12x before 8.2.121.0, and 8.3.x before 8.3.102.0 allow local users to gain privileges via crafted CLI parameters, aka Bug ID CSCuz24725.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Base Score
CVSS 3.x
EPSS Score
Percentile: 27%
Affected Products (NVD)
VendorProductVersion
ciscoaironet_access_point_software
8.1\(15.14\)
ciscoaironet_access_point_software
8.1\(112.3\)
ciscoaironet_access_point_software
8.1\(112.4\)
ciscoaironet_access_point_software
8.1\(131.0\)
ciscoaironet_access_point_software
8.2\(100.0\)
ciscoaironet_access_point_software
8.2\(102.43\)
ciscoaironet_access_point_software
8.3.0
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160817-aap1
http://www.securityfocus.com/bid/92513
http://www.securitytracker.com/id/1036644
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160817-aap1
http://www.securityfocus.com/bid/92513
http://www.securitytracker.com/id/1036644