CVE-2016-9197

medium

Cisco

CVSS v3 Base Score

6.7

CVSS:3.0/AV:L/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H

EPSS Score

0.1%

Exploitation probability in 30 days

Top 81% most likely to be exploited

Attack Characteristics

Attack Vector

Local

Attack Complexity

Low

Privileges Required

High

User Interaction

None

Confidentiality

High

Integrity

High

Availability

High

Published: April 7, 2017 (3323 days ago)

Last Modified: May 13, 2026

Vendor: Cisco

Source: NVD

Description

A vulnerability in the CLI command parser of the Cisco Mobility Express 2800 and 3800 Series Wireless LAN Controllers could allow an authenticated, local attacker to obtain access to the underlying operating system shell with root-level privileges. More Information: CSCvb70351. Known Affected Releases: 8.3(102.0).

CWE

CWE-264

Affected Products

cisco mobility services engine

References

🔗 www.securityfocus.com 🔗 tools.cisco.com 🔗 www.securityfocus.com 🔗 tools.cisco.com

CVE-2016-9197

Vulnerability Report

Description

CWE

Affected Products

References