====================================================================

                              CERT-Renater

                 Note d'Information No. 2017/VULN104
_____________________________________________________________________

DATE                : 06/04/2017

HARDWARE PLATFORM(S): Cisco Aironet 1830 Series and 1850 Series Access
                         Points.

OPERATING SYSTEM(S): Systems running Cisco Mobility Express Software.

=====================================================================
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-ame
____________________________________________________________________

Cisco Security Advisory: Cisco Aironet 1830 Series and 1850 Series
Access Points Mobility Express Default Credential Vulnerability

Advisory ID: cisco-sa-20170405-ame

Revision: 1.0

For Public Release: 2017 April 5 16:00 GMT

Last Updated: 2017 April 5 16:00 GMT

CVE ID(s): CVE-2017-3834

CVSS Score v(3): 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

+---------------------------------------------------------------------

Summary
=======
A vulnerability in Cisco Aironet 1830 Series and Cisco Aironet 1850
Series Access Points running Cisco Mobility Express Software could
allow an unauthenticated, remote attacker to take complete control of
an affected device.

The vulnerability is due to the existence of default credentials for an
affected device that is running Cisco Mobility Express Software,
regardless of whether the device is configured as a master,
subordinate, or standalone access point. An attacker who has layer 3
connectivity to an affected device could use Secure Shell (SSH) to log
in to the device with elevated privileges.  A successful exploit could
allow the attacker to take complete control of the device.

Cisco has released software updates that address this vulnerability.
There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-ame
["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-ame"]

==========================================================
+ CERT-RENATER          | tel : 01-53-94-20-44           +
+ 23 - 25 Rue Daviel    | fax : 01-53-94-20-41           +
+ 75013 Paris           | email: cert@support.renater.fr +
==========================================================