CVSS: 7.4EPSS: 0%CPEs: 3EXPL: 0CVE-2019-1800 – Cisco Wireless LAN Controller Software IAPP Message Handling Denial of Service Vulnerabilities
https://notcve.org/view.php?id=CVE-2019-1800
18 Apr 2019 — A vulnerability in the handling of Inter-Access Point Protocol (IAPP) messages by Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability exist because the software improperly validates input on fields within IAPP messages. An attacker could exploit the vulnerability by sending malicious IAPP messages to an affected device. A successful exploit could allow the attacker to cause the Cisco WLC Software to re... • http://www.securityfocus.com/bid/108008 • CWE-20: Improper Input Validation CWE-399: Resource Management Errors •
CVSS: 7.4EPSS: 0%CPEs: 3EXPL: 0CVE-2019-1796 – Cisco Wireless LAN Controller Software IAPP Message Handling Denial of Service Vulnerabilities
https://notcve.org/view.php?id=CVE-2019-1796
18 Apr 2019 — A vulnerability in the handling of Inter-Access Point Protocol (IAPP) messages by Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability exist because the software improperly validates input on fields within IAPP messages. An attacker could exploit the vulnerability by sending malicious IAPP messages to an affected device. A successful exploit could allow the attacker to cause the Cisco WLC Software to re... • http://www.securityfocus.com/bid/108008 • CWE-20: Improper Input Validation CWE-399: Resource Management Errors •
CVSS: 7.4EPSS: 0%CPEs: 4EXPL: 0CVE-2019-1799 – Cisco Wireless LAN Controller Software IAPP Message Handling Denial of Service Vulnerabilities
https://notcve.org/view.php?id=CVE-2019-1799
18 Apr 2019 — A vulnerability in the handling of Inter-Access Point Protocol (IAPP) messages by Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability exist because the software improperly validates input on fields within IAPP messages. An attacker could exploit the vulnerability by sending malicious IAPP messages to an affected device. A successful exploit could allow the attacker to cause the Cisco WLC Software to re... • http://www.securityfocus.com/bid/108008 • CWE-20: Improper Input Validation CWE-399: Resource Management Errors •
CVSS: 6.5EPSS: 0%CPEs: 53EXPL: 0CVE-2016-9194
https://notcve.org/view.php?id=CVE-2016-9194
06 Apr 2017 — A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the 802.11 WME packet header. An attacker could exploit this vulnerability by sending malformed 802.11 WME frames to a targeted device. A successful exploit could allow the attacker to cause the WLC to reload unexpectedly.... • http://www.securityfocus.com/bid/97424 • CWE-399: Resource Management Errors •
CVSS: 5.7EPSS: 0%CPEs: 96EXPL: 0CVE-2016-6375
https://notcve.org/view.php?id=CVE-2016-6375
12 Sep 2016 — Cisco Wireless LAN Controller (WLC) devices before 8.0.140.0, 8.1.x and 8.2.x before 8.2.121.0, and 8.3.x before 8.3.102.0 allow remote attackers to cause a denial of service (device reload) by sending crafted Inter-Access Point Protocol (IAPP) packets and then sending a traffic stream metrics (TSM) information request over SNMP, aka Bug ID CSCuz40221. Dispositivos Cisco Wireless LAN Controller (WLC) en versiones anteriores a 8.0.140.0, 8.1.x y 8.2.x en versiones anteriores a 8.2.121.0 y 8.3.x en versiones ... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-wlc-1 • CWE-399: Resource Management Errors •
CVSS: 6.5EPSS: 0%CPEs: 95EXPL: 0CVE-2016-6376
https://notcve.org/view.php?id=CVE-2016-6376
02 Sep 2016 — The Adaptive Wireless Intrusion Prevention System (wIPS) feature on Cisco Wireless LAN Controller (WLC) devices before 8.0.140.0, 8.1.x and 8.2.x before 8.2.121.0, and 8.3.x before 8.3.102.0 allows remote attackers to cause a denial of service (device restart) via a malformed wIPS packet, aka Bug ID CSCuz40263. La funcionalidad Adaptive Wireless Intrusion Prevention System (wIPS) en dispositivos Cisco Wireless LAN Controller (WLC) en versiones anteriores a 8.0.140.0, 8.1.x y 8.2.x en versiones anteriores a ... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160831-wlc-2 • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 3EXPL: 0CVE-2015-6311
https://notcve.org/view.php?id=CVE-2015-6311
08 Oct 2015 — Cisco Wireless LAN Controller (WLC) devices with software 7.0(240.0), 7.3(101.0), and 7.4(1.19) allow remote attackers to cause a denial of service (device outage) by sending malformed 802.11i management data to a managed access point, aka Bug ID CSCub65236. Dispositivos Cisco Wireless LAN Controller (WLC) con software 7.0(240.0), 7.3(101.0) y 7.4(1.19), permite a atacantes remotos provocar una denegación de servicio (interrupción del dispositivo) mediante el envío malformado del manejo de datos 802.11i a u... • http://tools.cisco.com/security/center/viewAlert.x?alertId=41249 • CWE-399: Resource Management Errors •
CVSS: 7.8EPSS: 0%CPEs: 11EXPL: 0CVE-2014-0701
https://notcve.org/view.php?id=CVE-2014-0701
06 Mar 2014 — Cisco Wireless LAN Controller (WLC) devices 7.0 before 7.0.250.0, 7.2, 7.3, and 7.4 before 7.4.110.0 do not properly deallocate memory, which allows remote attackers to cause a denial of service (reboot) by sending WebAuth login requests at a high rate, aka Bug ID CSCuf52361. Los dispositivos de Cisco Wireless LAN Controller (WLC) 7.0 anterior a 7.0.250.0, 7.2, 7.3 y 7.4 anterior a 7.4.110.0 no desasignan debidamente memoria, lo que permite a atacantes remotos causar una denegación de servicio (reinicio) me... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140305-wlc • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 54EXPL: 0CVE-2014-0704
https://notcve.org/view.php?id=CVE-2014-0704
06 Mar 2014 — The IGMP implementation on Cisco Wireless LAN Controller (WLC) devices 4.x, 5.x, 6.x, 7.0 before 7.0.250.0, 7.1, 7.2, and 7.3, when IGMPv3 Snooping is enabled, allows remote attackers to cause a denial of service (memory over-read and device restart) via a crafted field in an IGMPv3 message, aka Bug ID CSCuh33240. La implementación IGMP en los dispositivos de Cisco Wireless LAN Controller (WLC) 4.x, 5.x, 6.x, 7.0 anterior a 7.0.250.0, 7.1, 7.2 y 7.3, cuando IGMPv3 Snooping está habilitado, permite a atacant... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140305-wlc • CWE-399: Resource Management Errors •
CVSS: 7.5EPSS: 0%CPEs: 9EXPL: 0CVE-2014-0705
https://notcve.org/view.php?id=CVE-2014-0705
06 Mar 2014 — The multicast listener discovery (MLD) service on Cisco Wireless LAN Controller (WLC) devices 7.2, 7.3, 7.4 before 7.4.121.0, and 7.5, when MLDv2 Snooping is enabled, allows remote attackers to cause a denial of service (device restart) via a malformed IPv6 MLDv2 packet, aka Bug ID CSCuh74233. El servicio Multicast Listener Discovery (MLD) en los dispositivos de Cisco Wireless LAN Controller (WLC) 7.2, 7.3, 7.4 anterior a 7.4.121.0 y 7.5, cuando MLDv2 Snooping está habilitado, permite a atacantes remotos ca... • http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140305-wlc • CWE-399: Resource Management Errors •