Cisco » Wireless Lan Controller Software : Security Vulnerabilities, CVEs, Published In 2013
The mDNS snooping functionality on Cisco Wireless LAN Controller (WLC) devices with software 7.4.1.54 and earlier does not properly manage buffers, which allows remote authenticated users to cause a denial of service (device reload) via crafted mDNS packets, aka Bug ID CSCue04153.
Max CVSS
6.1
EPSS Score
0.07%
Published
2013-02-28
Updated
2013-03-07
Cisco Wireless LAN Controller (WLC) devices with software 7.0 before 7.0.235.3, 7.1 and 7.2 before 7.2.111.3, and 7.3 before 7.3.101.0 allow remote authenticated users to bypass wireless-management settings and read or modify the device configuration via an SNMP request, aka Bug ID CSCua60653.
Max CVSS
9.0
EPSS Score
0.42%
Published
2013-01-24
Updated
2017-08-29
The HTTP Profiling functionality on Cisco Wireless LAN Controller (WLC) devices with software 7.3.101.0 allows remote authenticated users to execute arbitrary code via a crafted HTTP User-Agent header, aka Bug ID CSCuc15636.
Max CVSS
9.0
EPSS Score
1.45%
Published
2013-01-24
Updated
2017-08-29
Cisco Wireless LAN Controller (WLC) devices with software 7.0 before 7.0.220.0, 7.1 before 7.1.91.0, and 7.2 before 7.2.103.0 allow remote attackers to cause a denial of service (Access Point reload) via crafted SIP packets, aka Bug ID CSCts87659.
Max CVSS
7.8
EPSS Score
1.28%
Published
2013-01-24
Updated
2013-02-02
The Wireless Intrusion Prevention System (wIPS) component on Cisco Wireless LAN Controller (WLC) devices with software 7.0 before 7.0.235.0, 7.1 and 7.2 before 7.2.110.0, and 7.3 before 7.3.101.0 allows remote attackers to cause a denial of service (device reload) via crafted IP packets, aka Bug ID CSCtx80743.
Max CVSS
7.8
EPSS Score
0.68%
Published
2013-01-24
Updated
2013-02-02
5 vulnerabilities found