Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-20181017-WLC-GUI-PRIVESC
HistoryOct 17, 2018 - 4:00 p.m.

Cisco Wireless LAN Controller Software GUI Privilege Escalation Vulnerability

2018-10-1716:00:00
tools.cisco.com
503

0.0004 Low

EPSS

Percentile

15.6%

JSON

A vulnerability in TACACS authentication with Cisco Wireless LAN Controller (WLC) Software could allow an authenticated, local attacker to perform certain operations within the GUI that are not normally available to that user on the CLI.

The vulnerability is due to incorrect parsing of a specific TACACS attribute received in the TACACS response from the remote TACACS server. An attacker could exploit this vulnerability by authenticating via TACACS to the GUI on the affected device. A successful exploit could allow an attacker to create local user accounts with administrative privileges on an affected WLC and execute other commands that are not allowed from the CLI and should be prohibited.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181017-wlc-gui-privesc [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181017-wlc-gui-privesc”]

Affected configurations

Vulners
Node
ciscowireless_lan_controllerMatch4.0
OR
ciscowireless_lan_controllerMatch3.2
OR
ciscowireless_lan_controllerMatch3.1
OR
ciscowireless_lan_controllerMatch4.1
OR
ciscowireless_lan_controllerMatch3.0
OR
ciscowireless_lan_controllerMatch4.2
OR
ciscowireless_lan_controllerMatch5.0
OR
ciscowireless_lan_controllerMatch5.1
OR
ciscowireless_lan_controllerMatch5.2
OR
ciscowireless_lan_controllerMatch6.0
OR
ciscowireless_lan_controllerMatch7.0
OR
ciscowireless_lan_controllerMatch7.1
OR
ciscowireless_lan_controllerMatch7.2
OR
ciscowireless_lan_controllerMatch7.4
OR
ciscowireless_lan_controllerMatch7.3
OR
ciscowireless_lan_controllerMatch7.5
OR
ciscowireless_lan_controllerMatch7.6
OR
ciscowireless_lan_controllerMatch8.0
OR
ciscowireless_lan_controllerMatch3.6
OR
ciscowireless_lan_controllerMatch8.3
OR
ciscowireless_lan_controllerMatch8.2
OR
ciscowireless_lan_controllerMatch8.5
OR
ciscowireless_lan_controllerMatch8.4
OR
ciscowireless_lan_controllerMatch8.6
OR
ciscowireless_lan_controllerMatch4.0.196
OR
ciscowireless_lan_controllerMatch4.0.108
OR
ciscowireless_lan_controllerMatch4.0.155.5
OR
ciscowireless_lan_controllerMatch4.0.179.8
OR
ciscowireless_lan_controllerMatch4.0.179.11
OR
ciscowireless_lan_controllerMatch4.0.155.0
OR
ciscowireless_lan_controllerMatch4.0.206.0
OR
ciscowireless_lan_controllerMatch4.0.217.0
OR
ciscowireless_lan_controllerMatch4.0.219.0
OR
ciscowireless_lan_controllerMatch3.2.78.0
OR
ciscowireless_lan_controllerMatch3.2.116.21
OR
ciscowireless_lan_controllerMatch3.2.150.6
OR
ciscowireless_lan_controllerMatch3.2.150.10
OR
ciscowireless_lan_controllerMatch3.2.171.5
OR
ciscowireless_lan_controllerMatch3.2.171.6
OR
ciscowireless_lan_controllerMatch3.2.185.0
OR
ciscowireless_lan_controllerMatch3.2.195.10
OR
ciscowireless_lan_controllerMatch3.2.193.5
OR
ciscowireless_lan_controllerMatch3.1.105.0
OR
ciscowireless_lan_controllerMatch3.1.59.24
OR
ciscowireless_lan_controllerMatch3.1.111.0
OR
ciscowireless_lan_controllerMatchany
OR
ciscowireless_lan_controllerMatch4.1.181.0
OR
ciscowireless_lan_controllerMatch4.1.171.0
OR
ciscowireless_lan_controllerMatch4.1.185.0
OR
ciscowireless_lan_controllerMatchany
OR
ciscowireless_lan_controllerMatchany
OR
ciscowireless_lan_controllerMatch4.2.61.0
OR
ciscowireless_lan_controllerMatch4.2.99.0
OR
ciscowireless_lan_controllerMatch4.2.112.0
OR
ciscowireless_lan_controllerMatch4.2.130.0
OR
ciscowireless_lan_controllerMatch4.2.117.0
OR
ciscowireless_lan_controllerMatch4.2.173.0
OR
ciscowireless_lan_controllerMatch4.2.174.0
OR
ciscowireless_lan_controllerMatch4.2.176.0
OR
ciscowireless_lan_controllerMatch4.2.182.0
OR
ciscowireless_lan_controllerMatch5.0.148.0
OR
ciscowireless_lan_controllerMatch5.0.148.2
OR
ciscowireless_lan_controllerMatch5.1.151.0
OR
ciscowireless_lan_controllerMatch5.1.152.0
OR
ciscowireless_lan_controllerMatch5.1.160.0
OR
ciscowireless_lan_controllerMatch5.2.157.0
OR
ciscowireless_lan_controllerMatch5.2.169.0
OR
ciscowireless_lan_controllerMatchany
OR
ciscowireless_lan_controllerMatch6.0.182.0
OR
ciscowireless_lan_controllerMatch6.0.188.0
OR
ciscowireless_lan_controllerMatch6.0.196.0
OR
ciscowireless_lan_controllerMatch6.0.199.4
OR
ciscowireless_lan_controllerMatch6.0.202.0
OR
ciscowireless_lan_controllerMatchany
OR
ciscowireless_lan_controllerMatch7.0.98.0
OR
ciscowireless_lan_controllerMatch7.0.116.0
OR
ciscowireless_lan_controllerMatch7.0.98.218
OR
ciscowireless_lan_controllerMatch7.0.220.0
OR
ciscowireless_lan_controllerMatch7.0.240.0
OR
ciscowireless_lan_controllerMatch7.0.250.0
OR
ciscowireless_lan_controllerMatch7.0.252.0
OR
ciscowireless_lan_controllerMatch7.0.230.0
OR
ciscowireless_lan_controllerMatch7.0.235.0
OR
ciscowireless_lan_controllerMatch7.0.235.3
OR
ciscowireless_lan_controllerMatch7.0.251.2
OR
ciscowireless_lan_controllerMatchany
OR
ciscowireless_lan_controllerMatch7.1.91.0
OR
ciscowireless_lan_controllerMatchany
OR
ciscowireless_lan_controllerMatch7.2.103.0
OR
ciscowireless_lan_controllerMatch7.2.110.0
OR
ciscowireless_lan_controllerMatch7.2.111.3
OR
ciscowireless_lan_controllerMatch7.2.115.2
OR
ciscowireless_lan_controllerMatch7.4.100.0
OR
ciscowireless_lan_controllerMatch7.4.100.60
OR
ciscowireless_lan_controllerMatch7.4.110.0
OR
ciscowireless_lan_controllerMatch7.4.121.0
OR
ciscowireless_lan_controllerMatch7.4.140.0
OR
ciscowireless_lan_controllerMatch7.4.130.0
OR
ciscowireless_lan_controllerMatch7.4.150.0
OR
ciscowireless_lan_controllerMatchany
OR
ciscowireless_lan_controllerMatch7.3.101.0
OR
ciscowireless_lan_controllerMatch7.3.112.0
OR
ciscowireless_lan_controllerMatch7.3.103.8
OR
ciscowireless_lan_controllerMatch7.5.102.0
OR
ciscowireless_lan_controllerMatch7.5.102.11
OR
ciscowireless_lan_controllerMatch7.6.100.0
OR
ciscowireless_lan_controllerMatch7.6.120.0
OR
ciscowireless_lan_controllerMatch7.6.110.0
OR
ciscowireless_lan_controllerMatch7.6.130.0
OR
ciscowireless_lan_controllerMatch7.6.1.62
OR
ciscowireless_lan_controllerMatch8.0.100.0
OR
ciscowireless_lan_controllerMatch8.0.115.0
OR
ciscowireless_lan_controllerMatch8.0.120.0
OR
ciscowireless_lan_controllerMatch8.0.121.0
OR
ciscowireless_lan_controllerMatch8.0.135.0
OR
ciscowireless_lan_controllerMatch8.0.133.0
OR
ciscowireless_lan_controllerMatch8.0.132.0
OR
ciscowireless_lan_controllerMatch8.0.110.0
OR
ciscowireless_lan_controllerMatch8.0.150.0
OR
ciscowireless_lan_controllerMatch8.0.140.0
OR
ciscowireless_lan_controllerMatch8.0.152.0
OR
ciscowireless_lan_controllerMatch3.6.0e
OR
ciscowireless_lan_controllerMatch8.3.102.0
OR
ciscowireless_lan_controllerMatch8.3.102.15
OR
ciscowireless_lan_controllerMatch8.3.111.0
OR
ciscowireless_lan_controllerMatch8.3.112.0
OR
ciscowireless_lan_controllerMatch8.3.121.0
OR
ciscowireless_lan_controllerMatch8.3.122.0
OR
ciscowireless_lan_controllerMatch8.3.130.0
OR
ciscowireless_lan_controllerMatch8.3.131.0
OR
ciscowireless_lan_controllerMatch8.3.132.0
OR
ciscowireless_lan_controllerMatch8.3.133.0
OR
ciscowireless_lan_controllerMatch8.3.140.0
OR
ciscowireless_lan_controllerMatch8.3.141.0
OR
ciscowireless_lan_controllerMatch8.3.143.0
OR
ciscowireless_lan_controllerMatch8.2.121.0
OR
ciscowireless_lan_controllerMatch8.2.130.0
OR
ciscowireless_lan_controllerMatch8.2.100.0
OR
ciscowireless_lan_controllerMatch8.2.110.0
OR
ciscowireless_lan_controllerMatch8.2.111.0
OR
ciscowireless_lan_controllerMatch8.2.141.0
OR
ciscowireless_lan_controllerMatch8.2.151.0
OR
ciscowireless_lan_controllerMatch8.2.160.0
OR
ciscowireless_lan_controllerMatch8.2.161.0
OR
ciscowireless_lan_controllerMatch8.2.164.0
OR
ciscowireless_lan_controllerMatch8.2.166.0
OR
ciscowireless_lan_controllerMatch8.5.103.0
OR
ciscowireless_lan_controllerMatch8.5.105.0
OR
ciscowireless_lan_controllerMatch8.5.110.0
OR
ciscowireless_lan_controllerMatch8.5.120.0
OR
ciscowireless_lan_controllerMatch8.4.100.0
OR
ciscowireless_lan_controllerMatch8.6.101.0

Related

cve 1
cvelist 1
nvd 1
prion 1
nessus 1
cve
cve
CVE-2018-0417
2018-10-17 22:29:00
cvelist
cvelist
CVE-2018-0417 Cisco Wireless LAN Controller Software GUI Privilege Escalation Vulnerability
2018-10-17 00:00:00
nvd
nvd
CVE-2018-0417
2018-10-17 22:29:00
prion
prion
Authentication flaw
2018-10-17 22:29:00
nessus
nessus
Cisco Wireless LAN Controller Multiple Vulnerabilities
2018-10-26 00:00:00

0.0004 Low

EPSS

Percentile

15.6%

JSON
Related for CISCO-SA-20181017-WLC-GUI-PRIVESC
cve1cvelist1nvd1prion1nessus1