CVE-2012-0370 — Cisco Wireless LAN Controller Software vulnerability

CWE-3994 documents4 sources

Severity

7.8HIGHNVD

EPSS

0.4%

top 39.69%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Wireless LAN Controller Software

Timeline

PublishedMar 1

Latest updateMay 4

Description

Cisco Wireless LAN Controller (WLC) devices with software 4.x, 5.x, 6.0, and 7.0 before 7.0.220.0 and 7.1 before 7.1.91.0, when WebAuth is enabled, allow remote attackers to cause a denial of service (device reload) via a sequence of (1) HTTP or (2) HTTPS packets, aka Bug ID CSCtt47435.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

▶NVDcisco/wireless_lan_controller_software46 versions+45

🔴Vulnerability Details

GHSA

GHSA-jrpw-v2qc-8m5g: Cisco Wireless LAN Controller (WLC) devices with software 4↗2022-05-04

▶

CVEList

CVE-2012-0370: Cisco Wireless LAN Controller (WLC) devices with software 4↗2012-03-01

▶

📋Vendor Advisories

Cisco

Multiple Vulnerabilities in Cisco Wireless LAN Controllers↗2012-03-01

▶