Unified Wireless Network Solution Software@7.0.98.0 Security Vulnerabilities and Issues — Unified Wireless Network Solution Software@7.0.98.0 CVE List

Lucene search

CiscoUnified Wireless Network Solution Software7.0.98.0

10 matches found

CVE•added 2010/08/10 12:19 p.m.•38 views

CVE-2010-2976

The controller in Cisco Unified Wireless Network (UWN) Solution 7.x through 7.0.98.0 has (1) a default SNMP read-only community of public, (2) a default SNMP read-write community of private, and a value of "default" for the (3) SNMP v3 username, (4) SNMP v3 authentication password, and (5) SNMP v3 ...

10CVSS7.5AI score0.0226EPSS

CVE•added 2010/08/10 12:19 p.m.•36 views

CVE-2010-2979

Cisco Unified Wireless Network (UWN) Solution 7.x before 7.0.98.0 on 5508 series controllers allows remote attackers to cause a denial of service (buffer leak and device crash) via ARP requests that trigger an ARP storm, aka Bug ID CSCte43508.

7.8CVSS6.8AI score0.0071EPSS

CVE•added 2010/08/10 12:19 p.m.•34 views

CVE-2010-2982

Cisco Unified Wireless Network (UWN) Solution 7.x before 7.0.98.0 allows remote attackers to discover a group password via a series of SNMP requests, as demonstrated by an SNMP walk, aka Bug ID CSCtb74037.

7.1CVSS7AI score0.00364EPSS

CVE•added 2010/08/10 12:19 p.m.•33 views

CVE-2010-2980

Cisco Unified Wireless Network (UWN) Solution 7.x before 7.0.98.0 on 5508 series controllers allows remote attackers to cause a denial of service (pbuf exhaustion and device crash) via fragmented traffic, aka Bug ID CSCtd26794.

7.8CVSS6.9AI score0.0071EPSS

CVE•added 2010/08/10 12:19 p.m.•33 views

CVE-2010-2983

The workgroup bridge (aka WGB) functionality in Cisco Unified Wireless Network (UWN) Solution 7.x before 7.0.98.0 allows remote attackers to cause a denial of service (dropped connection) via a series of spoofed EAPoL-Logoff frames, related to an "EAPoL logoff attack," aka Bug ID CSCte43374.

7.8CVSS6.8AI score0.0071EPSS

CVE•added 2010/08/10 12:18 p.m.•31 views

CVE-2010-2975

Cisco Unified Wireless Network (UWN) Solution 7.x through 7.0.98.0 does not properly handle multiple SSH sessions, which allows physically proximate attackers to read a password, related to an "arrow key failure," aka Bug ID CSCtg51544.

2.1CVSS6.6AI score0.00147EPSS

CVE•added 2010/08/10 12:19 p.m.•30 views

CVE-2010-2977

Cisco Unified Wireless Network (UWN) Solution 7.x before 7.0.98.0 does not properly implement TLS and SSL, which has unspecified impact and remote attack vectors, aka Bug ID CSCtd01611.

10CVSS7AI score0.00403EPSS

CVE•added 2010/08/10 12:19 p.m.•30 views

CVE-2010-2984

Cisco Unified Wireless Network (UWN) Solution 7.x before 7.0.98.0 on 4404 series controllers does not properly implement the WEBAUTH_REQD state, which allows remote attackers to bypass intended access restrictions via WLAN traffic, aka Bug ID CSCtb75305.

10CVSS7AI score0.00502EPSS

CVE•added 2010/08/10 12:19 p.m.•29 views

CVE-2010-2978

Cisco Unified Wireless Network (UWN) Solution 7.x before 7.0.98.0 does not use an adequate message-digest algorithm for a self-signed certificate, which allows remote attackers to bypass intended access restrictions via vectors involving collisions, aka Bug ID CSCtd67660.

10CVSS6.9AI score0.0027EPSS

CVE•added 2010/08/10 12:19 p.m.•29 views

CVE-2010-2981

Cisco Unified Wireless Network (UWN) Solution 7.x before 7.0.98.0 allows remote attackers to cause a denial of service (device crash) by pinging a virtual interface, aka Bug ID CSCte55370.

7.1CVSS6.8AI score0.00665EPSS