CVE-2015-0723

CWE-3994 documents4 sources

Severity

6.1MEDIUM

EPSS

0.5%

top 35.80%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Wireless LAN Controller Software

Timeline

PublishedMay 16

Latest updateMay 17

Description

The wireless web-authentication subsystem on Cisco Wireless LAN Controller (WLC) devices 7.5.x and 7.6.x before 7.6.120 allows remote attackers to cause a denial of service (process crash and device restart) via a crafted value, aka Bug ID CSCum03269.

CVSS vector

AV:A/AC:L/C:N/I:N/A:CExploitability: 6.5 | Impact: 6.9

Affected Packages1 packages

▶NVDcisco/wireless_lan_controller_software7.5.102.0, 7.5.102.11, 7.6.100.0+2

🔴Vulnerability Details

GHSA

GHSA-q5cq-pgpp-cq8v: The wireless web-authentication subsystem on Cisco Wireless LAN Controller (WLC) devices 7↗2022-05-17

▶

CVEList

CVE-2015-0723: The wireless web-authentication subsystem on Cisco Wireless LAN Controller (WLC) devices 7↗2015-05-16

▶

📋Vendor Advisories

Cisco

Cisco Wireless LAN Controller Wireless Web Authentication Denial of Service Vulnerability↗2015-05-08

▶