CVE-2016-9197

Summary

A vulnerability in the CLI command parser of the Cisco Mobility Express 2800 and 3800 Series Wireless LAN Controllers could allow an authenticated, local attacker to obtain access to the underlying operating system shell with root-level privileges. More Information: CSCvb70351. Known Affected Releases: 8.3(102.0).

Affected Software

VendorProductVersion RangeStatus
n/aCisco Mobility Express 2800 and 3800 Series Wireless LAN ControllersCisco Mobility Express 2800 and 3800 Series Wireless LAN Controllersaffected

Weaknesses

  • Shell Bypass Vulnerability

ADP Enrichment

CVE Program Container

Additional References

References