Cisco Wap361 Firmware vulnerabilities
13 known vulnerabilities affecting cisco/wap361_firmware.
Total CVEs
13
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH11MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2021-1547HIGHCVSS 7.2≤ 1.1.2.42021-05-22
CVE-2021-1547 [MEDIUM] CWE-77 CVE-2021-1547: Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100,
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device. These vulnerabilities are due to improper validation of user-supplied input. An attacker could exploi
nvd
CVE-2021-1550HIGHCVSS 7.2≤ 1.1.2.42021-05-22
CVE-2021-1550 [MEDIUM] CWE-77 CVE-2021-1550: Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100,
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device. These vulnerabilities are due to improper validation of user-supplied input. An attacker could exploi
nvd
CVE-2021-1548HIGHCVSS 7.2≤ 1.1.2.42021-05-22
CVE-2021-1548 [MEDIUM] CWE-77 CVE-2021-1548: Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100,
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device. These vulnerabilities are due to improper validation of user-supplied input. An attacker could exploi
nvd
CVE-2021-1554HIGHCVSS 7.2≤ 1.1.2.42021-05-22
CVE-2021-1554 [MEDIUM] CWE-77 CVE-2021-1554: Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100,
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device. These vulnerabilities are due to improper validation of user-supplied input. An attacker could exploi
nvd
CVE-2021-1553HIGHCVSS 7.2≤ 1.1.2.42021-05-22
CVE-2021-1553 [MEDIUM] CWE-77 CVE-2021-1553: Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100,
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device. These vulnerabilities are due to improper validation of user-supplied input. An attacker could exploi
nvd
CVE-2021-1551HIGHCVSS 7.2≤ 1.1.2.42021-05-22
CVE-2021-1551 [MEDIUM] CWE-77 CVE-2021-1551: Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100,
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device. These vulnerabilities are due to improper validation of user-supplied input. An attacker could exploi
nvd
CVE-2021-1549HIGHCVSS 7.2≤ 1.1.2.42021-05-22
CVE-2021-1549 [MEDIUM] CWE-77 CVE-2021-1549: Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100,
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device. These vulnerabilities are due to improper validation of user-supplied input. An attacker could exploi
nvd
CVE-2021-1555HIGHCVSS 7.2≤ 1.1.2.42021-05-22
CVE-2021-1555 [MEDIUM] CWE-77 CVE-2021-1555: Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100,
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device. These vulnerabilities are due to improper validation of user-supplied input. An attacker could exploi
nvd
CVE-2021-1552HIGHCVSS 7.2≤ 1.1.2.42021-05-22
CVE-2021-1552 [MEDIUM] CWE-77 CVE-2021-1552: Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100,
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to perform command injection attacks against an affected device. These vulnerabilities are due to improper validation of user-supplied input. An attacker could exploi
nvd
CVE-2021-1401HIGHCVSS 7.2≤ 1.1.2.42021-05-06
CVE-2021-1401 [HIGH] CWE-269 CVE-2021-1401: Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100,
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to obtain sensitive information from or inject arbitrary commands on an affected device. For more information about these vulnerabilities, see the Details section of t
nvd
CVE-2021-1400HIGHCVSS 8.8≤ 1.1.2.42021-05-06
CVE-2021-1400 [HIGH] CWE-269 CVE-2021-1400: Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100,
Multiple vulnerabilities in the web-based management interface of certain Cisco Small Business 100, 300, and 500 Series Wireless Access Points could allow an authenticated, remote attacker to obtain sensitive information from or inject arbitrary commands on an affected device. For more information about these vulnerabilities, see the Details section of t
nvd
CVE-2018-0415MEDIUMCVSS 6.8≤ 1.0.6.62018-08-15
CVE-2018-0415 [MEDIUM] CWE-388 CVE-2018-0415: A vulnerability in the implementation of Extensible Authentication Protocol over LAN (EAPOL) functio
A vulnerability in the implementation of Extensible Authentication Protocol over LAN (EAPOL) functionality in Cisco Small Business 100 Series Wireless Access Points and Cisco Small Business 300 Series Wireless Access Points could allow an authenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerabi
nvd
CVE-2018-0412MEDIUMCVSS 5.3≤ 1.0.6.62018-08-15
CVE-2018-0412 [MEDIUM] CWE-310 CVE-2018-0412: A vulnerability in the implementation of Extensible Authentication Protocol over LAN (EAPOL) functio
A vulnerability in the implementation of Extensible Authentication Protocol over LAN (EAPOL) functionality in Cisco Small Business 100 Series Wireless Access Points and Cisco Small Business 300 Series Wireless Access Points could allow an unauthenticated, adjacent attacker to force the downgrade of the encryption algorithm that is used between an auth
nvd