9 matches found
CVE-2018-5793
CVE-2018-5793 affects Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. A remote, unauthenticated heap overflow occurs in the HSD process over the MINT protocol on WiNG APs, triggered by crafted packets, leading to possible denial of service via a crash. No exploi...
CVE-2018-5796
An elevation of privileges vulnerability in Extreme Networks ExtremeWireless WiNG (5.x) before 5.8.6.9 and 5.9.x before 5.9.1.3 allows an attacker to obtain a hidden root shell by entering the administrator password in conjunction with the 'service start-shell' CLI command. Affected product: Extr...
CVE-2018-5790
The CVE-2018-5790 issue affects Extreme Networks ExtremeWireless WiNG 5.x, specifically before 5.8.6.9 and before 5.9.1.3 for the 5.9.x line. The vulnerability is a Remote, Unauthenticated Denial of Service targeting the Radio Interface Module (RIM) over the MINT protocol on WiNG Access Points, t...
CVE-2018-5794
CVE-2018-5794 affects Extreme Networks ExtremeWireless WiNG 5.x (before 5.8.6.9) and 5.9.x (before 5.9.1.3). The issue is a lack of authentication for the AeroScout service over forged UDP packets, enabling access without credentials. The provided documents consistently describe an authentication...
CVE-2018-5791
Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3 contain a remote, unauthenticated heap overflow in the HSD process over the MINT protocol on WiNG APs. An attacker can craft packets to trigger the overflow via the MINT channel, potentially causing a denial of serv...
CVE-2018-5795
CVE-2018-5795 affects Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. The issue is Arbitrary File Write from the WebGUI on the WiNG Access Point/Controller. Descriptions in connected sources confirm the vulnerability exists in the Web User Interface of the WiNG ...
CVE-2018-5789
CVE-2018-5789 affects Extreme Networks ExtremeWireless WiNG 5.x (pre-5.8.6.9 and pre-5.9.1.3). The issue is a remote, unauthenticated XML Entity Expansion Denial of Service via crafted XML entities to the Web UI on WiNG AP/Controller. Impact is partial availability loss. Root cause is XML Externa...
CVE-2018-5792
CVE-2018-5792 affects Extreme Networks ExtremeWireless WiNG 5.x (pre-5.8.6.9 and pre-5.9.1.3) where a remote, unauthenticated heap overflow occurs in the HSD process over the MINT (Media Independent Tunnel) protocol on the WiNG APs, exploitable via crafted packets. The issue can cause a denial of...
CVE-2018-5788
CVE-2018-5788 affects Extreme Networks ExtremeWireless WiNG 5.x before 5.8.6.9 and 5.9.x before 5.9.1.3. The RIM (Radio Interface Module) run on the WiNG AP is vulnerable to a remote, unauthenticated denial-of-service via specially crafted packets. Impact is a denial of service to the AP’s RIM co...