What is CVE-2016-9196?

CVE-2016-9196 is a medium-severity vulnerability in Cisco Aironet_1800, classified under CWE-264. CVSS score: 6.7/10. Published 2017-04-07.

How severe is CVE-2016-9196?

Medium severity. CVSS v3 base score is 6.7 out of 10.

Vulnerability in Cisco Aironet_1800

CVE-2016-9196

A vulnerability in login authentication management in Cisco Aironet 1800, 2800, and 3800 Series Access Point platforms could allow an authenticated, local attacker to gain unrestricted root access to the underlying Linux operating system…

EPSS: 0.004 (33.6th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 6.7 (Medium). Vector: CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H.

Affected products

Cisco Aironet_1800
Cisco Aironet_2800e
Cisco Aironet_2800i
Cisco Aironet_3800e
Cisco Aironet_3800i
Cisco Aironet_3800p
Cisco Aironet_access_point — versions 8.1\(15.14\), 8.1\(112.3\), 8.1\(112.4\)
N/a Cisco Aironet 1800, 2800, And 3800 Series Access Point Platforms — versions Cisco Aironet 1800, 2800, and 3800 Series Access Point Platforms

Weakness classification (CWE)

CWE-264

References

psirt@cisco.com (x_refsource_CONFIRM, Vendor Advisory)
psirt@cisco.com (VDB Entry, Third Party Advisory, vdb-entry, x_refsource_BID)
psirt@cisco.com (vdb-entry, x_refsource_SECTRACK)

Frequently asked questions

What is CVE-2016-9196?: CVE-2016-9196 is a medium-severity vulnerability in Cisco Aironet_1800, classified under CWE-264. CVSS score: 6.7/10. Published 2017-04-07.
How severe is CVE-2016-9196?: Medium severity. CVSS v3 base score is 6.7 out of 10.