Cisco Aironet Series Access Points Development Shell Access Vulnerability
Description
A vulnerability in the development shell (devshell) authentication for Cisco Aironet Series Access Points (APs) running the Cisco AP-COS operating system could allow an authenticated, local attacker to access the development shell without proper authentication, which allows for root access to the underlying Linux OS. The attacker would need valid device credentials. The vulnerability exists because the software improperly validates user-supplied input at the CLI authentication prompt for development shell access. An attacker could exploit this vulnerability by authenticating to the device and entering crafted input at the CLI. A successful exploit could allow the attacker to access the AP development shell without proper authentication, which allows for root access to the underlying Linux OS. Software versions prior to 8.3.150.0, 8.5.135.0, and 8.8.100.0 are affected.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Cisco Aironet AP-COS devshell authentication flaw lets authenticated local attackers gain root access to the underlying Linux OS.
Vulnerability
A vulnerability in the development shell (devshell) authentication for Cisco Aironet Series Access Points (APs) running the Cisco AP-COS operating system allows an authenticated, local attacker to access the development shell without proper authentication, leading to root access to the underlying Linux OS. The flaw exists because the software improperly validates user-supplied input at the CLI authentication prompt for devshell access. Affected software versions are prior to 8.3.150.0, 8.5.135.0, and 8.8.100.0 [1].
Exploitation
An attacker must have valid device credentials to authenticate to the AP. The attacker then enters crafted input at the CLI authentication prompt for the development shell to bypass authentication [1]. This is a local access vulnerability; the attacker does not need network access beyond connectivity to the device's CLI.
Impact
Successful exploitation of this vulnerability allows the attacker to access the AP development shell without proper authentication. From the devshell, the attacker gains root access to the underlying Linux OS, resulting in complete compromise of the device's confidentiality, integrity, and availability [1].
Mitigation
Cisco released software updates to address this vulnerability in versions 8.3.150.0, 8.5.135.0, and 8.8.100.0 and later [1]. Administrators should upgrade to a fixed release. Cisco does not list this CVE in the KEV catalog. No workarounds are available [1].
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: <8.3.150.0, <8.5.135.0, <8.8.100.0
- Range: unspecified
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
2- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20190417-aironet-shellmitrevendor-advisoryx_refsource_CISCO
- www.securityfocus.com/bid/107991mitrevdb-entryx_refsource_BID
News mentions
0No linked articles in our index yet.