Successful exploitation may allow the attackers to load files, use a pedestrian approach, and issue the instructions to dispute root rights.
The non-WLC conditions remain unemployed
According to advice, customers use IOSXE software conditions on unemployed devices as WLCs are at risk.
The error only affects WLC conditions including products such as Catalyst 9800-CL wireless controlled by Catalyst 9300, 9400, and wireless controls, embedded by Catalyst APs. In addition, Cisco noted that abuse in order to succeed, the feature of the app App AP should be enabled on the device, which is not an automatic location.
The requirements are mentioned and target other CISco products in the weakest products list, including iOS software, IOS XR software, March Software, NXC Assyos software, and WLC Aireoos Software.
Source link