CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

NVD•added 2018/02/05 4:29 a.m.•12 views

CVE-2018-5791

An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is a Remote, Unauthenticated Heap Overflow in the HSD Process over the MINT Media Independent Tunnel Protocol on the WiNG Access Point via crafted packets...

5.9CVSS5.8AI score0.0168EPSS

Exploits0References1

Prion•added 2018/02/05 4:29 a.m.•6 views

Design/Logic Flaw

An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is a Remote, Unauthenticated XML Entity Expansion Denial of Service on the WiNG Access Point / Controller via crafted XML entities to the Web User Interface...

5CVSS7.5AI score0.00403EPSS

Exploits0References1Affected Software1

NVD•added 2018/02/05 4:29 a.m.•9 views

CVE-2018-5788

An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is a Remote, Unauthenticated Denial of Service in the RIM Radio Interface Module process running on the WiNG Access Point via crafted packets...

7.5CVSS7.5AI score0.01414EPSS

Exploits0References1

Prion•added 2018/02/05 4:29 a.m.•6 views

Authentication flaw

An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is No Authentication for the AeroScout Service via a crafted UDP packet...

5CVSS5.3AI score0.00297EPSS

Exploits0References1Affected Software1

Prion•added 2018/02/05 4:29 a.m.•9 views

Design/Logic Flaw

4.3CVSS5.8AI score0.0168EPSS

Exploits0References1Affected Software1

Prion•added 2018/02/05 4:29 a.m.•8 views

Code injection

An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is Arbitrary File Write from the WebGUI on the WiNG Access Point / Controller...

4CVSS5.2AI score0.00435EPSS

Exploits0References1Affected Software1

Cvelist•added 2018/02/05 4:0 a.m.•12 views

CVE-2018-5794

An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is No Authentication for the AeroScout Service via a crafted UDP packet...

5.3AI score0.00297EPSS

Exploits0References1

CVE•added 2018/02/05 4:0 a.m.•35 views

CVE-2018-5794

CVE-2018-5794 affects Extreme Networks ExtremeWireless WiNG 5.x (before 5.8.6.9) and 5.9.x (before 5.9.1.3). The issue is a lack of authentication for the AeroScout service over forged UDP packets, enabling access without credentials. The provided documents consistently describe an authentication...

5.3CVSS5.3AI score0.00297EPSS

Exploits0References1Affected Software1

Cvelist•added 2018/02/05 4:0 a.m.•11 views

CVE-2018-5797

An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is an Smintencrypt Hardcoded AES Key that can be used for packet decryption obtaining cleartext credentials by an attacker who has access to a wired port...

7.5AI score0.00136EPSS

Exploits0References1

Cvelist•added 2018/02/05 4:0 a.m.•9 views

CVE-2018-5796

An issue was discovered in Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. There is a Hidden Root Shell by entering the administrator password in conjunction with the 'service start-shell' CLI command...

7.1AI score0.00282EPSS

Exploits0References1

Cvelist•added 2018/02/05 4:0 a.m.•9 views

CVE-2018-5792

5.8AI score0.0168EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by