What is CVE-2016-1418?

CVE-2016-1418 is a high-severity vulnerability in Cisco Aironet_1830e, classified under Improper Input Validation. CVSS score: 7.8/10. Published 2016-06-08.

How severe is CVE-2016-1418?

High severity. CVSS v3 base score is 7.8 out of 10.

Improper input validation in Cisco Aironet_1830e

CVE-2016-1418

Cisco Aironet Access Point Software 8.2(100.0) on 1830e, 1830i, 1850e, 1850i, 2800, and 3800 access points allows local users to obtain Linux root access via crafted CLI command parameters, aka Bug ID CSCuy64037.

Vulnerability class: Drupalgeddon 2 (CVE-2018-7600)

EPSS: 0.004 (27.9th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Cisco Aironet_1830e
Cisco Aironet_1830i
Cisco Aironet_1850e
Cisco Aironet_1850i
Cisco Aironet_2800
Cisco Aironet_3800
Cisco Aironet_access_point_software_ — versions 8.2_\(100.0\)
N/a — versions n/a

Weakness classification (CWE)

CWE-20 — Improper Input Validation

References

psirt@cisco.com (vdb-entry, x_refsource_SECTRACK)
psirt@cisco.com (x_refsource_CISCO, vendor-advisory, Vendor Advisory)

Frequently asked questions

What is CVE-2016-1418?: CVE-2016-1418 is a high-severity vulnerability in Cisco Aironet_1830e, classified under Improper Input Validation. CVSS score: 7.8/10. Published 2016-06-08.
How severe is CVE-2016-1418?: High severity. CVSS v3 base score is 7.8 out of 10.