Lucene search
K
Database
Vendors
Products
Timeline
Vulnerabilities
Perimeter Scanner
Scanning
Projects
Scanner
Agent Scanning
API Scanning
Manual Audit
Email
Webhook
Resources
Documents
Blog
Glossary
FAQ
Plugins
Pricing
Contacts
About Us
Partners
Branding Guideline
Settings
Sign in
CiscoWireless Lan Controller Software

86 matches found

CVE
CVEadded 2019/04/18 1:29 a.m.48 views

CVE-2019-1799

A vulnerability in the handling of Inter-Access Point Protocol (IAPP) messages by Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability exist because the software improperly validates input on f...

7.4CVSS6.5AI score0.00145EPSS
CVE
CVEadded 2011/05/03 10:55 p.m.47 views

CVE-2011-1613

Unspecified vulnerability in Cisco Wireless LAN Controller (WLC) software 6.0 before 6.0.200.0, 7.0 before 7.0.98.216, and 7.0.1xx before 7.0.112.0 allows remote attackers to cause a denial of service (device reload) via a sequence of ICMP packets, aka Bug ID CSCth74426.

7.8CVSS6.6AI score0.35249EPSS
CVE
CVEadded 2013/01/24 9:55 p.m.47 views

CVE-2013-1105

Cisco Wireless LAN Controller (WLC) devices with software 7.0 before 7.0.235.3, 7.1 and 7.2 before 7.2.111.3, and 7.3 before 7.3.101.0 allow remote authenticated users to bypass wireless-management settings and read or modify the device configuration via an SNMP request, aka Bug ID CSCua60653.

9CVSS6.5AI score0.00604EPSS
CVE
CVEadded 2017/11/02 4:29 p.m.47 views

CVE-2017-12280

A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) Discovery Request parsing functionality of Cisco Wireless LAN Controllers could allow an unauthenticated, remote attacker to cause an affected device to restart unexpectedly, resulting in a denial of service (DoS) co...

7.8CVSS7.6AI score0.00642EPSS
CVE
CVEadded 2018/05/02 10:29 p.m.47 views

CVE-2018-0235

A vulnerability in the 802.11 frame validation functionality of the Cisco Wireless LAN Controller (WLC) could allow an unauthenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to incomplete inpu...

7.4CVSS7.4AI score0.00145EPSS
CVE
CVEadded 2019/04/18 1:29 a.m.47 views

CVE-2019-1797

A vulnerability in the web-based management interface of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on the device with the privileges of the user, including modifyin...

8.8CVSS8.6AI score0.00222EPSS
CVE
CVEadded 2010/09/10 6:0 p.m.46 views

CVE-2010-2841

Unspecified vulnerability in Cisco Wireless LAN Controller (WLC) software 4.2 before 4.2.209.0; 4.2M before 4.2.207.54M; 5.0, 5.1, and 6.0 before 6.0.196.0; and 5.2 before 5.2.193.11 allows remote authenticated users to cause a denial of service (device reload) via crafted HTTP packets that trigger...

6.8CVSS6.4AI score0.00115EPSS
CVE
CVEadded 2018/05/02 10:29 p.m.46 views

CVE-2018-0247

A vulnerability in Web Authentication (WebAuth) clients for the Cisco Wireless LAN Controller (WLC) and Aironet Access Points running Cisco IOS Software could allow an unauthenticated, adjacent attacker to bypass authentication and pass traffic. The vulnerability is due to incorrect implementation ...

4.7CVSS5AI score0.00464EPSS
CVE
CVEadded 2010/09/10 6:0 p.m.45 views

CVE-2010-2842

Cisco Wireless LAN Controller (WLC) software, possibly 4.2 through 6.0, allows remote authenticated users to bypass intended access restrictions and modify the configuration, and possibly obtain administrative privileges, via unspecified vectors, a different vulnerability than CVE-2010-2843 and CVE...

9CVSS6.4AI score0.00153EPSS
CVE
CVEadded 2009/02/05 12:30 a.m.44 views

CVE-2009-0059

The Cisco Wireless LAN Controller (WLC), Cisco Catalyst 6500 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.x before 4.2.176.0 and 5.2.x before 5.2.157.0 allow remote attackers to cause a denial of service (device reload) via a web authen...

7.8CVSS7AI score0.00985EPSS
CVE
CVEadded 2009/02/05 12:30 a.m.44 views

CVE-2009-0061

Unspecified vulnerability in the Wireless LAN Controller (WLC) TSEC driver in the Cisco 4400 WLC, Cisco Catalyst 6500 and 7600 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.x before 4.2.176.0 and 5.x before 5.1 allows remote attackers to...

7.8CVSS6.8AI score0.00573EPSS
CVE
CVEadded 2013/02/28 11:55 p.m.44 views

CVE-2013-1141

The mDNS snooping functionality on Cisco Wireless LAN Controller (WLC) devices with software 7.4.1.54 and earlier does not properly manage buffers, which allows remote authenticated users to cause a denial of service (device reload) via crafted mDNS packets, aka Bug ID CSCue04153.

6.1CVSS6.6AI score0.00158EPSS
CVE
CVEadded 2014/03/06 11:55 a.m.44 views

CVE-2014-0707

Cisco Wireless LAN Controller (WLC) devices 7.2, 7.3, and 7.4 before 7.4.110.0 allow remote attackers to cause a denial of service (device restart) via a crafted 802.11 Ethernet frame, aka Bug ID CSCuf80681.

7.8CVSS6.8AI score0.00427EPSS
CVE
CVEadded 2015/05/16 2:59 p.m.44 views

CVE-2015-0723

The wireless web-authentication subsystem on Cisco Wireless LAN Controller (WLC) devices 7.5.x and 7.6.x before 7.6.120 allows remote attackers to cause a denial of service (process crash and device restart) via a crafted value, aka Bug ID CSCum03269.

6.1CVSS6.8AI score0.00462EPSS
CVE
CVEadded 2016/09/12 1:59 a.m.44 views

CVE-2016-6375

Cisco Wireless LAN Controller (WLC) devices before 8.0.140.0, 8.1.x and 8.2.x before 8.2.121.0, and 8.3.x before 8.3.102.0 allow remote attackers to cause a denial of service (device reload) by sending crafted Inter-Access Point Protocol (IAPP) packets and then sending a traffic stream metrics (TSM...

5.7CVSS5.3AI score0.00284EPSS
CVE
CVEadded 2010/09/10 6:0 p.m.43 views

CVE-2010-0575

Cisco Wireless LAN Controller (WLC) software, possibly 6.0.x or possibly 4.1 through 6.0.x, allows remote attackers to bypass ACLs in the controller CPU, and consequently send network traffic to unintended segments or devices, via unspecified vectors, a different vulnerability than CVE-2010-3034.

5CVSS7.1AI score0.0016EPSS
CVE
CVEadded 2013/01/24 9:55 p.m.43 views

CVE-2013-1103

Cisco Wireless LAN Controller (WLC) devices with software 7.0 before 7.0.220.0, 7.1 before 7.1.91.0, and 7.2 before 7.2.103.0 allow remote attackers to cause a denial of service (Access Point reload) via crafted SIP packets, aka Bug ID CSCts87659.

7.8CVSS6.9AI score0.00708EPSS
CVE
CVEadded 2014/03/06 11:55 a.m.43 views

CVE-2014-0706

Cisco Wireless LAN Controller (WLC) devices 7.2 before 7.2.115.2, 7.3, and 7.4 before 7.4.110.0 allow remote attackers to cause a denial of service (device restart) via a crafted 802.11 Ethernet frame, aka Bug ID CSCue87929.

7.8CVSS6.8AI score0.00427EPSS
CVE
CVEadded 2016/07/28 1:59 a.m.43 views

CVE-2016-1460

Cisco Wireless LAN Controller (WLC) devices 7.4(121.0) and 8.0(0.30220.385) allow remote attackers to cause a denial of service via crafted wireless management frames, aka Bug ID CSCun92979.

6.5CVSS6.5AI score0.00323EPSS
CVE
CVEadded 2018/10/17 8:29 p.m.43 views

CVE-2018-15395

A vulnerability in the authentication and authorization checking mechanisms of Cisco Wireless LAN Controller (WLC) Software could allow an authenticated, adjacent attacker to gain network access to a Cisco TrustSec domain. Under normal circumstances, this access should be prohibited. The vulnerabil...

5.4CVSS5.5AI score0.00123EPSS
CVE
CVEadded 2009/02/05 12:30 a.m.42 views

CVE-2009-0062

Unspecified vulnerability in the Cisco Wireless LAN Controller (WLC), Cisco Catalyst 6500 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.2.173.0 allows remote authenticated users to gain privileges via unknown vectors, as demonstrated by ...

9CVSS7AI score0.00486EPSS
CVE
CVEadded 2010/09/10 6:0 p.m.42 views

CVE-2010-0574

Unspecified vulnerability in Cisco Wireless LAN Controller (WLC) software 3.2 before 3.2.215.0; 4.1 and 4.2 before 4.2.205.0; 4.1M and 4.2M before 4.2.207.54M; 5.0, 5.1, and 6.0 before 6.0.188.0; and 5.2 before 5.2.193.11 allows remote attackers to cause a denial of service (device reload) via a cr...

7.8CVSS6.7AI score0.00371EPSS
CVE
CVEadded 2010/09/10 6:0 p.m.42 views

CVE-2010-2843

Cisco Wireless LAN Controller (WLC) software, possibly 4.2 through 6.0, allows remote authenticated users to bypass intended access restrictions and modify the configuration, and possibly obtain administrative privileges, via unspecified vectors, a different vulnerability than CVE-2010-2842 and CVE...

9CVSS6.4AI score0.00153EPSS
CVE
CVEadded 2017/11/02 4:29 p.m.42 views

CVE-2017-12282

A vulnerability in the Access Network Query Protocol (ANQP) ingress frame processing functionality of Cisco Wireless LAN Controllers could allow an unauthenticated, Layer 2 RF-adjacent attacker to cause an affected device to restart unexpectedly, resulting in a denial of service (DoS) condition. Th...

6.1CVSS6.3AI score0.00218EPSS
CVE
CVEadded 2015/03/28 1:59 a.m.41 views

CVE-2015-0679

The web-authentication functionality on Cisco Wireless LAN Controller (WLC) devices 7.3(103.8) and 7.4(110.0) allows remote attackers to cause a denial of service (device reload) via a malformed password, aka Bug ID CSCui57980.

6.1CVSS6.9AI score0.00362EPSS
CVE
CVEadded 2015/06/26 10:59 a.m.41 views

CVE-2015-4224

Cisco Wireless LAN Controller (WLC) devices with software 7.0(240.0) allow local users to execute arbitrary OS commands in a privileged context via crafted CLI commands, aka Bug ID CSCuj39474.

7.2CVSS7.4AI score0.00235EPSS
CVE
CVEadded 2007/04/16 9:19 p.m.40 views

CVE-2007-2036

The SNMP implementation in the Cisco Wireless LAN Controller (WLC) before 20070419 uses the default read-only community public, and the default read-write community private, which allows remote attackers to read and modify SNMP variables, aka Bug ID CSCse02384.

10CVSS6.5AI score0.02295EPSS
CVE
CVEadded 2010/09/10 6:0 p.m.40 views

CVE-2010-3034

Cisco Wireless LAN Controller (WLC) software, possibly 6.0.x or possibly 4.1 through 6.0.x, allows remote attackers to bypass ACLs in the controller CPU, and consequently send network traffic to unintended segments or devices, via unspecified vectors, a different vulnerability than CVE-2010-0575.

5CVSS7.1AI score0.0016EPSS
CVE
CVEadded 2019/04/18 1:29 a.m.40 views

CVE-2019-1800

A vulnerability in the handling of Inter-Access Point Protocol (IAPP) messages by Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability exist because the software improperly validates input on f...

7.4CVSS6.5AI score0.00145EPSS
CVE
CVEadded 2014/03/06 11:55 a.m.39 views

CVE-2014-0701

Cisco Wireless LAN Controller (WLC) devices 7.0 before 7.0.250.0, 7.2, 7.3, and 7.4 before 7.4.110.0 do not properly deallocate memory, which allows remote attackers to cause a denial of service (reboot) by sending WebAuth login requests at a high rate, aka Bug ID CSCuf52361.

7.8CVSS6.8AI score0.00393EPSS
CVE
CVEadded 2014/03/06 11:55 a.m.39 views

CVE-2014-0705

The multicast listener discovery (MLD) service on Cisco Wireless LAN Controller (WLC) devices 7.2, 7.3, 7.4 before 7.4.121.0, and 7.5, when MLDv2 Snooping is enabled, allows remote attackers to cause a denial of service (device restart) via a malformed IPv6 MLDv2 packet, aka Bug ID CSCuh74233.

7.1CVSS6.8AI score0.00399EPSS
CVE
CVEadded 2019/04/17 10:29 p.m.39 views

CVE-2018-0382

A vulnerability in the session identification management functionality of the web-based interface of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to hijack a valid user session on an affected system. The vulnerability exists because the affected softw...

7.5CVSS6AI score0.00419EPSS
CVE
CVEadded 2007/07/26 12:30 a.m.36 views

CVE-2007-4011

Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller (WLC) software before 3.2 20070727, 4.0 before 20070727, and 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service (traffic amplification or ARP storm) via a crafted unicast ARP request that ...

7.1CVSS6.7AI score0.01033EPSS
CVE
CVEadded 2007/04/16 9:19 p.m.34 views

CVE-2007-2040

Cisco Aironet 1000 Series and 1500 Series Lightweight Access Points before 3.2.185.0, and 4.0.x before 4.0.206.0, have a hard-coded password, which allows attackers with physical access to perform arbitrary actions on the device, aka Bug ID CSCsg15192.

6.2CVSS6.4AI score0.00088EPSS
CVE
CVEadded 2007/07/26 12:30 a.m.34 views

CVE-2007-4012

Cisco 4100 and 4400, Airespace 4000, and Catalyst 6500 and 3750 Wireless LAN Controller (WLC) software 4.1 before 4.1.180.0 allows remote attackers to cause a denial of service (ARP storm) via a broadcast ARP packet that "targets the IP address of a known client context", aka CSCsj50374.

7.1CVSS6.6AI score0.01033EPSS
CVE
CVEadded 2018/10/17 10:29 p.m.32 views

CVE-2018-0420

A vulnerability in the web-based interface of Cisco Wireless LAN Controller Software could allow an authenticated, remote attacker to view sensitive information. The issue is due to improper sanitization of user-supplied input in HTTP request parameters that describe filenames and pathnames. An att...

6.5CVSS6.3AI score0.03207EPSS
Total number of security vulnerabilities86