CVE-2019-1835 in Aironet Access Pointالمعلومات

الملخص

بحسب MITRE

A vulnerability in the CLI of Cisco Aironet Access Points (APs) could allow an authenticated, local attacker to access sensitive information stored in an AP. The vulnerability is due to improper sanitization of user-supplied input in specific CLI commands. An attacker could exploit this vulnerability by accessing the CLI of an affected AP with administrator privileges and issuing crafted commands that result in directory traversal. A successful exploit could allow the attacker to view system files on the affected device, which could contain sensitive information. Software versions 8.8 and 8.9 are affected.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

مسؤول

Cisco Systems, Inc.

حجز

06/12/2018

الاعتدال

تمت الموافقة

إدخال

VDB-133812

CPE

جاهز

CWE

CWE-22 (مؤكد)

CVSS

4.4 (NVD)

EPSS

0.00077

KEV

لا

النشاطات

منخفض جدًا

القطاع

Government, Finance, ...

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2019-1835
NVD	https://nvd.nist.gov/vuln/detail/CVE-2019-1835
CVE Details	https://www.cvedetails.com/cve/CVE-2019-1835/

التالي ▸نظرة عامة ◂ السابق

Might our Artificial Intelligence support you?

Check our Alexa App!