{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-06-04T09:05:08.398","vulnerabilities":[{"cve":{"id":"CVE-2017-3831","sourceIdentifier":"psirt@cisco.com","published":"2017-03-15T20:59:00.193","lastModified":"2026-05-13T00:24:29.033","vulnStatus":"Modified","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in the web-based GUI of Cisco Mobility Express 1800 Series Access Points could allow an unauthenticated, remote attacker to bypass authentication. The attacker could be granted full administrator privileges. The vulnerability is due to improper implementation of authentication for accessing certain web pages using the GUI interface. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web interface of the affected system. A successful exploit could allow the attacker to bypass authentication and perform unauthorized configuration changes or issue control commands to the affected device. This vulnerability affects Cisco Mobility Express 1800 Series Access Points running a software version prior to 8.2.110.0. Cisco Bug IDs: CSCuy68219."},{"lang":"es","value":"Una vulnerabilidad en la interfaz gráfica de usuario basada en web de los puntos de acceso Cisco Mobility Express serie 1800 podría permitir a un atacante remoto no autenticado eludir la autenticación. El atacante podría tener privilegios completos de administrador. La vulnerabilidad se debe a la implementación incorrecta de la autenticación para acceder a determinadas páginas web a través de la interfaz GUI. Un atacante podría aprovechar esta vulnerabilidad enviando una solicitud HTTP manipulada a la interfaz web del sistema afectado. Una explotación exitosa podría permitir al atacante eludir la autenticación y realizar cambios de configuración no autorizados o mandar comandos de control al dispositivo afectado. Esta vulnerabilidad afecta a los puntos de acceso Cisco Mobility Express Serie 1800 que ejecutan una versión de software anterior a 8.2.110.0. ID de errores de Cisco: CSCuy68219."}],"metrics":{"cvssMetricV30":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.0","vectorString":"CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:C/A:C","baseScore":10.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":10.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"psirt@cisco.com","type":"Secondary","description":[{"lang":"en","value":"CWE-264"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-287"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:aironet_access_point_software:8.1\\(15.14\\):*:*:*:*:*:*:*","matchCriteriaId":"88453D71-DAF5-4813-9776-5391C31B1006"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:aironet_access_point_software:8.1\\(112.3\\):*:*:*:*:*:*:*","matchCriteriaId":"A187F61E-D4A4-4DF9-93B4-981C4B86F284"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:aironet_access_point_software:8.1\\(112.4\\):*:*:*:*:*:*:*","matchCriteriaId":"A92A6EC5-E47A-4001-A25C-A1043B346EDE"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:aironet_access_point_software:8.1\\(131.0\\):*:*:*:*:*:*:*","matchCriteriaId":"AAE1697B-74D9-4416-AFBA-EAD5C0E5A6E2"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:aironet_1810:-:*:*:*:*:*:*:*","matchCriteriaId":"36F923CF-D4EB-48F8-821D-8BB3A69ABB62"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:aironet_1810w:-:*:*:*:*:*:*:*","matchCriteriaId":"1D613A17-FFA9-4FF0-9C2A-AF8ACD59B765"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:aironet_1815i:-:*:*:*:*:*:*:*","matchCriteriaId":"207DC80E-499C-4CA3-8A88-F027DBC64CCF"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:aironet_1830e:-:*:*:*:*:*:*:*","matchCriteriaId":"4590D445-B4B6-48E6-BF55-BEA6BA763410"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:aironet_1830i:-:*:*:*:*:*:*:*","matchCriteriaId":"848CC5CD-1982-4F31-A626-BD567E1C19F0"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:aironet_1850e:-:*:*:*:*:*:*:*","matchCriteriaId":"24E47788-9B54-42C5-AD83-428B22674575"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:aironet_1850i:-:*:*:*:*:*:*:*","matchCriteriaId":"A333CD0B-4729-4E64-8B52-A3F5138F5B70"}]}]}],"references":[{"url":"http://www.securityfocus.com/bid/96909","source":"psirt@cisco.com","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170315-ap1800","source":"psirt@cisco.com","tags":["Vendor Advisory"]},{"url":"http://www.securityfocus.com/bid/96909","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Third Party Advisory","VDB Entry"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170315-ap1800","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}