CVE-2007-2037 — Cisco Wireless LAN Controller Software vulnerability

CWE-399 CWE-2644 documents4 sources

Severity

2.9LOWNVD

EPSS

0.7%

top 26.88%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Wireless LAN Controller Software

Timeline

PublishedApr 16

Latest updateMay 1

Description

Cisco Wireless LAN Controller (WLC) before 3.2.116.21, and 4.0.x before 4.0.155.0, allows remote attackers on a local network to cause a denial of service (device crash) via malformed Ethernet traffic.

CVSS vector

AV:A/AC:M/C:N/I:N/A:PExploitability: 5.5 | Impact: 2.9

Affected Packages1 packages

▶NVDcisco/wireless_lan_controller_software3.2 — 3.2.116.21+1

Patches

Patch: www.cisco.com ↗Patch: www.cisco.com ↗

🔴Vulnerability Details

GHSA

GHSA-6wvr-8vfm-q9r8: Cisco Wireless LAN Controller (WLC) before 3↗2022-05-01

▶

CVEList

CVE-2007-2037: Cisco Wireless LAN Controller (WLC) before 3↗2007-04-16

▶

📋Vendor Advisories

Cisco

Multiple Vulnerabilities in the Cisco Wireless LAN Controller and Cisco Lightweight Access Points↗2007-04-12

▶