Wireless Lan Controller Software Security Vulnerabilities and Issues — Wireless Lan Controller Software CVE List

Lucene search

CiscoWireless Lan Controller Software

7 matches found

CVE•added 2023/09/27 6:15 p.m.•69 views

CVE-2023-20268

A vulnerability in the packet processing functionality of Cisco access point (AP) software could allow an unauthenticated, adjacent attacker to exhaust resources on an affected device. This vulnerability is due to insufficient management of resources when handling certain types of traffic. An attac...

4.7CVSS4.8AI score0.00026EPSS

CVE•added 2018/10/17 7:29 p.m.•67 views

CVE-2018-0388

A vulnerability in the web-based interface of Cisco Wireless LAN Controller (WLC) Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against the user of the web-based interface of an affected system. The vulnerability is due to insufficient validat...

4.8CVSS5AI score0.00355EPSS

CVE•added 2019/10/16 7:15 p.m.•65 views

CVE-2019-15266

A vulnerability in the CLI of Cisco Wireless LAN Controller (WLC) Software could allow an authenticated, local attacker to view system files that should be restricted. This vulnerability is due to improper sanitization of user-supplied input in command-line parameters that describe filenames. An at...

4.4CVSS4.4AI score0.0009EPSS

CVE•added 2021/03/24 9:15 p.m.•57 views

CVE-2021-1423

A vulnerability in the implementation of a CLI command in Cisco Aironet Access Points (AP) could allow an authenticated, local attacker to overwrite files in the flash memory of the device. This vulnerability is due to insufficient input validation for a specific command. An attacker could exploit ...

4.4CVSS4.7AI score0.00069EPSS

CVE•added 2012/12/19 11:56 a.m.•49 views

CVE-2012-6007

Cross-site scripting (XSS) vulnerability in screens/base/web_auth_custom.html on Cisco Wireless LAN Controller (WLC) devices with software 7.2.110.0 allows remote authenticated users to inject arbitrary web script or HTML via the headline parameter, aka Bug ID CSCud65187, a different vulnerability ...

4.3CVSS5.3AI score0.01442EPSS

CVE•added 2015/04/07 2:0 a.m.•48 views

CVE-2015-0690

Cross-site scripting (XSS) vulnerability in the HTML help system on Cisco Wireless LAN Controller (WLC) devices before 8.0 allows remote attackers to inject arbitrary web script or HTML via a crafted URL, aka Bug ID CSCun95178.

4.3CVSS5.9AI score0.00263EPSS

CVE•added 2018/05/02 10:29 p.m.•46 views

CVE-2018-0247

A vulnerability in Web Authentication (WebAuth) clients for the Cisco Wireless LAN Controller (WLC) and Aironet Access Points running Cisco IOS Software could allow an unauthenticated, adjacent attacker to bypass authentication and pass traffic. The vulnerability is due to incorrect implementation ...

4.7CVSS5AI score0.00464EPSS