Lucene search
HistoryAug 17, 2010 - 5:41 a.m.
CVE-2010-2826
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
7.7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
43.5%
SQL injection vulnerability in Cisco Wireless Control System (WCS) 6.0.x before 6.0.196.0 allows remote authenticated users to execute arbitrary SQL commands via vectors related to the ORDER BY clause of the Client List screens, aka Bug ID CSCtf37019.
Affected configurations
Node
ciscowireless_control_system_softwareRange≤6.0.188.0
ORciscowireless_control_system_softwareMatch6.0
ORciscowireless_control_system_softwareMatch6.0.132.0
ORciscowireless_control_system_softwareMatch6.0.170.0
ORciscowireless_control_system_softwareMatch6.0.181.0
ORciscowireless_control_system_softwareMatch6.0.182.0
Related
cve
cve
CVE-2010-2826
2022-10-03 16:21:08
cisco
cisco
SQL Injection Vulnerability in Cisco Wireless Control System
2010-08-11 16:00:00
securityvulns
securityvulns
Cisco Security Advisory: SQL Injection Vulnerability in Cisco Wireless Control System
2010-08-11 00:00:00
Cisco Wireless Control System crossite scripting
2010-08-11 00:00:00
prion
prion
Sql injection
2010-08-17 05:41:00
nessus
nessus
cvelist
cvelist
CVE-2010-2826
2022-10-03 16:21:08
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
7.7 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
43.5%
Related for NVD:CVE-2010-2826