Lucene search

[email protected]CVE-2015-6314

HistoryJan 15, 2016 - 3:59 a.m.

CVE-2015-6314

2016-01-1503:59:00

CWE-287

[email protected]

web.nvd.nist.gov

cisco

wlc

devices

remote attackers

config change

unspecified vectors

cve-2015-6314

nvd

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

73.3%

JSON

Cisco Wireless LAN Controller (WLC) devices with software 7.6.x, 8.0 before 8.0.121.0, and 8.1 before 8.1.131.0 allow remote attackers to change configuration settings via unspecified vectors, aka Bug ID CSCuw06153.

CPENameOperatorVersion
cisco:wireless_lan_controller_softwarecisco wireless lan controller softwareeq8.1.0
cisco:wireless_lan_controller_softwarecisco wireless lan controller softwareeq8.1.111.0
cisco:wireless_lan_controller_softwarecisco wireless lan controller softwareeq8.1.104.37
cisco:wireless_lan_controller_softwarecisco wireless lan controller softwareeq8.0_base
cisco:wireless_lan_controller_softwarecisco wireless lan controller softwareeq8.0.72.140
cisco:wireless_lan_controller_softwarecisco wireless lan controller softwareeq8.1.122.0

CPE	Name	Operator	Version
cisco:wireless_lan_controller_software	cisco wireless lan controller software	eq	8.1.0
cisco:wireless_lan_controller_software	cisco wireless lan controller software	eq	8.1.111.0
cisco:wireless_lan_controller_software	cisco wireless lan controller software	eq	8.1.104.37
cisco:wireless_lan_controller_software	cisco wireless lan controller software	eq	8.0_base
cisco:wireless_lan_controller_software	cisco wireless lan controller software	eq	8.0.72.140
cisco:wireless_lan_controller_software	cisco wireless lan controller software	eq	8.1.122.0

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160113-wlc

www.securitytracker.com/id/1034665

Social References

9.8 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

9.3 High

AI Score

Confidence

High

10 High

CVSS2

Access Vector

NETWORK

Access Complexity

LOW

Authentication

NONE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:C/I:C/A:C

0.004 Low

EPSS

Percentile

73.3%

JSON

Related for CVE-2015-6314

prion1 nessus1 openvas1 cisco1 cvelist1