==================================================================== CERT-Renater Note d'Information No. 2018/VULN150 _____________________________________________________________________ DATE : 19/04/2018 HARDWARE PLATFORM(S): / OPERATING SYSTEM(S): Cisco Wireless LAN Controller Software. ===================================================================== https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-wlc _____________________________________________________________________ Cisco Security Advisory: Cisco Wireless LAN Controller Default Simple Network Management Protocol Community Strings Advisory ID: cisco-sa-20180418-wlc Revision: 1.0 For Public Release: 2018 April 18 16:00 GMT Last Updated: 2018 April 18 16:00 GMT CVE ID(s): NA +--------------------------------------------------------------------- Summary ======= With new installations of Cisco Wireless LAN Controller Software, the installation scripts create default community strings for Simple Network Management Protocol (SNMP) Version 2 (SNMPv2) and default usernames for SNMP Version 3 (SNMPv3), both allowing for read and write access. As documented in the Cisco Wireless LAN Controller Configuration Best Practices guide ["https://www.cisco.com/c/en/us/td/docs/wireless/technology/wlc/8-5/82463-wlc-config-best-practice.html#pgfId-379998"], the SNMP configuration should either be changed or disabled depending on the environmental requirements. If the default community strings and usernames are not changed or disabled, the system is open for read and write access through SNMP. This advisory is available at the following link: https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-wlc ["https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180418-wlc"] ========================================================== + CERT-RENATER | tel : 01-53-94-20-44 + + 23 - 25 Rue Daviel | fax : 01-53-94-20-41 + + 75013 Paris | email: cert@support.renater.fr + ==========================================================