Lucene search
+L

73 matches found

BDU FSTEC
BDU FSTEC
added 2020/05/29 12:0 a.m.8 views

The vulnerability of the GAS frame processing function in the 802.11 protocol of Cisco Wireless LAN Controllers allows a attacker to induce a service failure.

The vulnerability of the Generic Advertising Service GAS frame processing function in Cisco Wireless LAN Controllers based on the 802.11 protocol is related to the execution of operations outside the buffer in memory. Exploiting this vulnerability can allow an attacker to cause a service failure ...

8.6CVSS7.8AI score0.01274EPSS
Exploits0References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2019/11/27 12:0 a.m.25 views

Cisco IOS XE Software, Catalyst, and NGWC GUI Privilege Escalation (cisco-sa-20170927-ngwc)

According to its self-reported version, Cisco IOS XE Software is affected by a privilege escalation vulnerability in the web-based Wireless Controller GUI for Cisco 5760 Wireless LAN Controllers, Cisco Catalyst 4500E Supervisor Engine 8-E Wireless Switches, and Cisco New Generation Wireless...

9CVSS8.1AI score0.03236EPSS
Exploits0References3
Prion
Prion
added 2017/11/02 4:29 p.m.19 views

Input validation

A vulnerability in the implementation of 802.11v Basic Service Set BSS Transition Management functionality in Cisco Wireless LAN Controllers could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a denial of service DoS condition. The...

6.1CVSS7.3AI score0.00708EPSS
Exploits0References3
NVD
NVD
added 2017/11/02 4:29 p.m.23 views

CVE-2017-12280

A vulnerability in the Control and Provisioning of Wireless Access Points CAPWAP Discovery Request parsing functionality of Cisco Wireless LAN Controllers could allow an unauthenticated, remote attacker to cause an affected device to restart unexpectedly, resulting in a denial of service DoS...

7.8CVSS7.7AI score0.02585EPSS
Exploits0References3
Prion
Prion
added 2017/11/02 4:29 p.m.19 views

Input validation

A vulnerability in the Access Network Query Protocol ANQP ingress frame processing functionality of Cisco Wireless LAN Controllers could allow an unauthenticated, Layer 2 RF-adjacent attacker to cause an affected device to restart unexpectedly, resulting in a denial of service DoS condition. The...

5.7CVSS6.2AI score0.00569EPSS
Exploits0References3
NVD
NVD
added 2017/11/02 4:29 p.m.20 views

CVE-2017-12275

A vulnerability in the implementation of 802.11v Basic Service Set BSS Transition Management functionality in Cisco Wireless LAN Controllers could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a denial of service DoS condition. The...

7.4CVSS7.3AI score0.00708EPSS
Exploits0References3
NVD
NVD
added 2017/11/02 4:29 p.m.16 views

CVE-2017-12278

A vulnerability in the Simple Network Management Protocol SNMP subsystem of Cisco Wireless LAN Controllers could allow an authenticated, remote attacker to cause an affected device to restart, resulting in a denial of service DoS condition. The vulnerability is due to a memory leak that occurs on...

6.3CVSS6.7AI score0.01607EPSS
Exploits0References3
Prion
Prion
added 2017/11/02 4:29 p.m.18 views

Input validation

A vulnerability in the Control and Provisioning of Wireless Access Points CAPWAP Discovery Request parsing functionality of Cisco Wireless LAN Controllers could allow an unauthenticated, remote attacker to cause an affected device to restart unexpectedly, resulting in a denial of service DoS...

7.8CVSS7.5AI score0.02585EPSS
Exploits0References3
CVE
CVE
added 2017/11/02 4:0 p.m.68 views

CVE-2017-12278

CVE-2017-12278 affects Cisco Wireless LAN Controllers via a memory-leak in the SNMP subsystem that can exhaust memory and cause a reboot/DoS when an attacker who has SNMP credentials polls specific MIBs. Exploitation requires authenticated access (SNMP v2 read or SNMP v3 credentials); memory depl...

6.3CVSS6.5AI score0.01607EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2017/11/02 4:0 p.m.61 views

CVE-2017-12280

Cisco WLCs are affected by CVE-2017-12280 due to incomplete input validation in CAPWAP Discovery Request parsing, allowing unauthenticated remote attackers to cause a restart and DoS. The issue impacts Cisco Wireless LAN Controllers; exploitation involves sending crafted CAPWAP Discovery Request ...

7.8CVSS7.6AI score0.02585EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2017/11/02 4:0 p.m.59 views

CVE-2017-12282

CVE-2017-12282 affects Cisco Wireless LAN Controllers (WLC) and relates to the ANQP ingress frame processing. The root cause is incomplete input validation of ANQP query frames, which can be exploited by an unauthenticated, Layer 2 RF-adjacent attacker on an RF-adjacent network to cause the affec...

6.1CVSS6.3AI score0.00569EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2017/11/02 4:0 p.m.29 views

CVE-2017-12278

A vulnerability in the Simple Network Management Protocol SNMP subsystem of Cisco Wireless LAN Controllers could allow an authenticated, remote attacker to cause an affected device to restart, resulting in a denial of service DoS condition. The vulnerability is due to a memory leak that occurs on...

6.7AI score0.01607EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/11/02 4:0 p.m.23 views

CVE-2017-12282

A vulnerability in the Access Network Query Protocol ANQP ingress frame processing functionality of Cisco Wireless LAN Controllers could allow an unauthenticated, Layer 2 RF-adjacent attacker to cause an affected device to restart unexpectedly, resulting in a denial of service DoS condition. The...

6.6AI score0.00569EPSS
Exploits0References3
Cvelist
Cvelist
added 2017/11/02 4:0 p.m.24 views

CVE-2017-12275

A vulnerability in the implementation of 802.11v Basic Service Set BSS Transition Management functionality in Cisco Wireless LAN Controllers could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a denial of service DoS condition. The...

7.3AI score0.00708EPSS
Exploits0References3
NVD
NVD
added 2017/09/29 1:34 a.m.23 views

CVE-2017-12222

A vulnerability in the wireless controller manager of Cisco IOS XE could allow an unauthenticated, adjacent attacker to cause a restart of the switch and result in a denial of service DoS condition. The vulnerability is due to insufficient input validation. An attacker could exploit this...

6.5CVSS6.4AI score0.00749EPSS
Exploits0References3
NVD
NVD
added 2017/09/29 1:34 a.m.23 views

CVE-2017-12226

A vulnerability in the web-based Wireless Controller GUI of Cisco IOS XE Software for Cisco 5760 Wireless LAN Controllers, Cisco Catalyst 4500E Supervisor Engine 8-E Wireless Switches, and Cisco New Generation Wireless Controllers NGWC 3850 could allow an authenticated, remote attacker to elevate...

9CVSS8.9AI score0.03236EPSS
Exploits0References4
NVD
NVD
added 2017/04/07 5:59 p.m.19 views

CVE-2016-9197

A vulnerability in the CLI command parser of the Cisco Mobility Express 2800 and 3800 Series Wireless LAN Controllers could allow an authenticated, local attacker to obtain access to the underlying operating system shell with root-level privileges. More Information: CSCvb70351. Known Affected...

7.2CVSS6.5AI score0.0033EPSS
Exploits0References2
CVE
CVE
added 2017/04/07 5:0 p.m.39 views

CVE-2016-9197

CVE-2016-9197 affects Cisco Mobility Express 2800 and 3800 Series Wireless LAN Controllers. The root cause is a vulnerability in the CLI command parser due to incorrect permissions assigned to configured users, enabling an authenticated, local attacker to obtain access to the underlying operating...

7.2CVSS6.4AI score0.0033EPSS
Exploits0References2Affected Software1
OpenVAS
OpenVAS
added 2017/04/07 12:0 a.m.16 views

Cisco Mobility Express 2800 and 3800 Series Wireless LAN Controllers Shell Bypass Vulnerability

A vulnerability in the CLI command parser of the Cisco Mobility Express 2800 and 3800 Series Wireless LAN Controllers could allow an authenticated, local attacker to obtain access to the underlying operating system shell with root-level privileges. Copyright C 2017 Greenbone Networks GmbH Some te...

7.2CVSS6.5AI score0.0033EPSS
Exploits0References1
Cisco
Cisco
added 2015/05/13 4:12 p.m.27 views

Cisco Wireless LAN Controller Web Administration Interface Authenticated Remote Denial of Service Vulnerability

A vulnerability in the web administration interface of Cisco Wireless LAN Controllers WLC could allow an authenticated, remote attacker to cause a denial of service DoS condition on an affected device. The vulnerability is due to improper validation of certain parameters submitted as part of form...

6.8CVSS6.4AI score0.02771EPSS
Exploits0References1
Rows per page
Query Builder