CVE-2014-0707Improper Input Validation in Cisco Wireless LAN Controller Software

CWE-399CWE-20Improper Input ValidationCWE-362Race Condition4 documents4 sources
Severity
7.8HIGHNVD
EPSS
0.4%
top 37.62%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
Cisco Wireless LAN Controller Software
Timeline
PublishedMar 6
Latest updateMay 17

Description

Cisco Wireless LAN Controller (WLC) devices 7.2, 7.3, and 7.4 before 7.4.110.0 allow remote attackers to cause a denial of service (device restart) via a crafted 802.11 Ethernet frame, aka Bug ID CSCuf80681.

CVSS vector

AV:N/AC:L/C:N/I:N/A:CExploitability: 10.0 | Impact: 6.9

Affected Packages1 packages

🔴Vulnerability Details

2
GHSA
GHSA-27hv-6g2f-xwx7: Cisco Wireless LAN Controller (WLC) devices 72022-05-17
CVEList
CVE-2014-0707: Cisco Wireless LAN Controller (WLC) devices 72014-03-06

📋Vendor Advisories

1
Cisco
Multiple Vulnerabilities in Cisco Wireless LAN Controllers2014-03-06
CVE-2014-0707 — Improper Input Validation in Cisco | cvebase