Wireless Lan Controller Software@* Security Vulnerabilities and Issues — Wireless Lan Controller Software@* CVE List

Lucene search

CiscoWireless Lan Controller Software*

14 matches found

CVE•added 2024/03/27 5:15 p.m.•101 views

CVE-2024-20271

A vulnerability in the IP packet processing of Cisco Access Point (AP) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation of certain IPv4 packets. An attacker could e...

8.6CVSS7.1AI score0.00456EPSS

CVE•added 2023/03/23 5:15 p.m.•89 views

CVE-2023-20097

A vulnerability in Cisco access points (AP) software could allow an authenticated, local attacker to inject arbitrary commands and execute them with root privileges. This vulnerability is due to improper input validation of commands that are issued from a wireless controller to an AP. An attacker w...

6.7CVSS5.7AI score0.0005EPSS

CVE•added 2023/03/23 5:15 p.m.•83 views

CVE-2023-20056

A vulnerability in the management CLI of Cisco access point (AP) software could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could e...

6.5CVSS5.8AI score0.00066EPSS

CVE•added 2022/09/30 7:15 p.m.•71 views

CVE-2022-20769

A vulnerability in the authentication functionality of Cisco Wireless LAN Controller (WLC) AireOS Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient error validation. An attacker co...

7.4CVSS6.9AI score0.00039EPSS

CVE•added 2023/09/27 6:15 p.m.•70 views

CVE-2023-20268

A vulnerability in the packet processing functionality of Cisco access point (AP) software could allow an unauthenticated, adjacent attacker to exhaust resources on an affected device. This vulnerability is due to insufficient management of resources when handling certain types of traffic. An attac...

4.7CVSS4.8AI score0.00026EPSS

CVE•added 2019/10/16 7:15 p.m.•68 views

CVE-2019-15266

A vulnerability in the CLI of Cisco Wireless LAN Controller (WLC) Software could allow an authenticated, local attacker to view system files that should be restricted. This vulnerability is due to improper sanitization of user-supplied input in command-line parameters that describe filenames. An at...

4.4CVSS4.4AI score0.0009EPSS

CVE•added 2020/09/24 6:15 p.m.•64 views

CVE-2020-3560

A vulnerability in Cisco Aironet Access Points (APs) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) on an affected device. The vulnerability is due to improper resource management while processing specific packets. An attacker could exploit this vulnerability by ...

8.6CVSS8.5AI score0.01156EPSS

CVE•added 2018/10/17 10:29 p.m.•63 views

CVE-2018-0442

A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol component of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to retrieve memory contents, which could lead to the disclosure of confidential information. The vuln...

7.5CVSS7.4AI score0.01405EPSS

CVE•added 2018/10/17 10:29 p.m.•62 views

CVE-2018-0417

A vulnerability in TACACS authentication with Cisco Wireless LAN Controller (WLC) Software could allow an authenticated, local attacker to perform certain operations within the GUI that are not normally available to that user on the CLI. The vulnerability is due to incorrect parsing of a specific T...

7.8CVSS7.8AI score0.00467EPSS

CVE•added 2021/03/24 9:15 p.m.•58 views

CVE-2021-1423

A vulnerability in the implementation of a CLI command in Cisco Aironet Access Points (AP) could allow an authenticated, local attacker to overwrite files in the flash memory of the device. This vulnerability is due to insufficient input validation for a specific command. An attacker could exploit ...

4.4CVSS4.7AI score0.00069EPSS

CVE•added 2019/04/17 10:29 p.m.•51 views

CVE-2018-0248

A vulnerability in the administrative GUI configuration feature of Cisco Wireless LAN Controller (WLC) Software could allow an aUTHENTICated, remote attacker to cause the device to reload unexpectedly during device configuration when the administrator is using this GUI, causing a denial of service ...

6.8CVSS6.1AI score0.00314EPSS

CVE•added 2021/03/24 8:15 p.m.•51 views

CVE-2021-1449

A vulnerability in the boot logic of Cisco Access Points Software could allow an authenticated, local attacker to execute unsigned code at boot time. The vulnerability is due to an improper check that is performed by the area of code that manages system startup processes. An attacker could exploit ...

6.7CVSS6.5AI score0.00041EPSS

CVE•added 2019/04/18 2:29 a.m.•50 views

CVE-2019-1830

A vulnerability in Locally Significant Certificate (LSC) management for the Cisco Wireless LAN Controller (WLC) could allow an authenticated, remote attacker to cause the device to unexpectedly restart, which causes a denial of service (DoS) condition. The attacker would need to have valid administ...

6.8CVSS5.1AI score0.00169EPSS

CVE•added 2019/04/18 1:29 a.m.•48 views

CVE-2019-1797

A vulnerability in the web-based management interface of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on the device with the privileges of the user, including modifyin...

8.8CVSS8.6AI score0.00222EPSS