What is CVE-2016-6362?

CVE-2016-6362 is a high-severity vulnerability in Cisco Aironet_access_point_software, classified under CWE-264. CVSS score: 7.8/10. Published 2016-08-22.

How severe is CVE-2016-6362?

High severity. CVSS v3 base score is 7.8 out of 10.

Vulnerability in Cisco Aironet_access_point_software

CVE-2016-6362

Cisco Aironet 1800, 2800, and 3800 devices with software before 8.2.110.0, 8.2.12x before 8.2.121.0, and 8.3.x before 8.3.102.0 allow local users to gain privileges via crafted CLI parameters, aka Bug ID CSCuz24725.

EPSS: 0.004 (31.2th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.8 (High). Vector: CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H.

Affected products

Cisco Aironet_access_point_software — versions 8.1\(15.14\), 8.1\(112.3\), 8.1\(112.4\)
N/a — versions n/a

Weakness classification (CWE)

CWE-264

References

psirt@cisco.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_SECTRACK)
psirt@cisco.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
psirt@cisco.com (x_refsource_CISCO, vendor-advisory, Vendor Advisory)

Frequently asked questions

What is CVE-2016-6362?: CVE-2016-6362 is a high-severity vulnerability in Cisco Aironet_access_point_software, classified under CWE-264. CVSS score: 7.8/10. Published 2016-08-22.
How severe is CVE-2016-6362?: High severity. CVSS v3 base score is 7.8 out of 10.