CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
NONE
Integrity Impact
NONE
Availability Impact
COMPLETE
AV:N/AC:M/Au:N/C:N/I:N/A:C
AI Score
Confidence
High
EPSS
Percentile
53.7%
The IGMP implementation on Cisco Wireless LAN Controller (WLC) devices 4.x, 5.x, 6.x, 7.0 before 7.0.250.0, 7.1, 7.2, and 7.3, when IGMPv3 Snooping is enabled, allows remote attackers to cause a denial of service (memory over-read and device restart) via a crafted field in an IGMPv3 message, aka Bug ID CSCuh33240.
Vendor | Product | Version | CPE |
---|---|---|---|
cisco | wireless_lan_controller_software | 4.0 | cpe:2.3:o:cisco:wireless_lan_controller_software:4.0:*:*:*:*:*:*:* |
cisco | wireless_lan_controller_software | 4.0.108 | cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.108:*:*:*:*:*:*:* |
cisco | wireless_lan_controller_software | 4.0.155.0 | cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.155.0:*:*:*:*:*:*:* |
cisco | wireless_lan_controller_software | 4.0.155.5 | cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.155.5:*:*:*:*:*:*:* |
cisco | wireless_lan_controller_software | 4.0.179.8 | cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.179.8:*:*:*:*:*:*:* |
cisco | wireless_lan_controller_software | 4.0.179.11 | cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.179.11:*:*:*:*:*:*:* |
cisco | wireless_lan_controller_software | 4.0.196 | cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.196:*:*:*:*:*:*:* |
cisco | wireless_lan_controller_software | 4.0.206.0 | cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.206.0:*:*:*:*:*:*:* |
cisco | wireless_lan_controller_software | 4.0.217.0 | cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.217.0:*:*:*:*:*:*:* |
cisco | wireless_lan_controller_software | 4.0.219.0 | cpe:2.3:o:cisco:wireless_lan_controller_software:4.0.219.0:*:*:*:*:*:*:* |