Cisco IOS XE Command Injection Vulnerability in Web-Based Management Interface

A command injection vulnerability has been identified in the web-based management interface of the Wireless LAN Controller feature in Cisco IOS XE Software. This vulnerability allows an authenticated, remote attacker with a lobby ambassador user account to execute arbitrary Cisco IOS XE Software CLI commands with privilege level 15. The issue arises from insufficient input validation, enabling the attacker to send crafted input to the management interface. Exploitation is possible only if the attacker has obtained credentials for a lobby ambassador account, which is not configured by default.

Impact

Exploitation of this vulnerability could lead to unauthorized command execution on the affected device with elevated privileges.

Remediation

Cisco has released free software updates to address this vulnerability. Customers with service contracts that include regular software updates should obtain the security fixes through their usual channels. For those without service contracts, contact the Cisco Technical Assistance Center (TAC) for assistance. To determine exposure to this vulnerability, use the Cisco Software Checker tool.