Aironet 1800 series is affected by the CVE-2015-6336 vulnerability that consist in the presence of a hardcoded static password granting access to the device. A remote attacker could exploit the flaw to log in to the Cisco wireless LAN controllers by using a default account having a static password, fortunately, the account does not have full administrative privileges, this means that attacker cannot take over the device and worst attack scenario is represented by a denial-of-service attack. The company has already issued software updates that fix these vulnerabilities.”]
Source: https://securityaffairs.co/wordpress/43597/security/cisco-wireless-points-hardcoded-pwd.html