CVE-2015-0756

CWE-20 — Improper Input Validation CWE-3994 documents4 sources

Severity

6.1MEDIUM

EPSS

0.4%

top 41.78%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Wireless LAN Controller

Timeline

PublishedMay 29

Latest updateMay 17

Description

Cisco Wireless LAN Controller (WLC) devices with software 7.4(1.1) allow remote attackers to cause a denial of service (wireless-networking outage) via crafted TCP traffic on the local network, aka Bug ID CSCug67104.

CVSS vector

AV:A/AC:L/C:N/I:N/A:CExploitability: 6.5 | Impact: 6.9

Affected Packages1 packages

▶NVDcisco/wireless_lan_controller7.4\(1.1\)

🔴Vulnerability Details

GHSA

GHSA-m2v7-4478-359w: Cisco Wireless LAN Controller (WLC) devices with software 7↗2022-05-17

▶

CVEList

CVE-2015-0756: Cisco Wireless LAN Controller (WLC) devices with software 7↗2015-05-29

▶

📋Vendor Advisories

Cisco

Cisco Wireless LAN Controller TCP Denial of Service Vulnerability↗2015-05-27

▶