Cisco has issued patches for critical and high-severity vulnerabilities in its Aironet access point devices. The most severe bug is a critical glitch that could allow unauthenticated, remote attackers to gain unauthorized access to targeted devices giving them elevated privileges such as the ability to view sensitive data and tamper with the device configuration. Cisco also issued a slew of additional patches addressing other flaws in its products. The flaws stem from an improper validation of user-supplied input to the web-based management interface of the devices.
Source: https://threatpost.com/cisco-aironet-access-points-critical-flaws/149266/