A vulnerability in the social login configuration option for the guest users of Cisco Business Wireless Access Points (APs) could allow an unauthenticated, adjacent malicious user to bypass social login authentication. This vulnerability is due to a logic error with the social login implementation. An attacker could exploit this vulnerability by attempting to authenticate to an affected device. A successful exploit could allow the malicious user to access the Guest Portal without authentication.
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
cisco business 140ac access point firmware |
||
cisco business 141acm firmware |
||
cisco business 142acm firmware |
||
cisco business 143acm firmware |
||
cisco business 151axm firmware 10.4.2 |
||
cisco business 145ac access point firmware |
||
cisco business 150ax access point firmware 10.4.2 |
||
cisco business 240ac access point firmware |
Vulmon