Cisco Wireless Lan Controller vulnerabilities

CVE-2016-1364 Cisco Wireless LAN Controller Denial of Service Vulnerability CVE-2016-1364: Cisco Wireless LAN Controller Denial of Service Vulnerability A vulnerability in the Bonjour task manager of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper handling of Bonjour traffic by the affected software. An attacker could exploit this vulnerability by

CVE-2015-6341 Cisco Wireless LAN Controller Client Disconnection Vulnerability CVE-2015-6341: Cisco Wireless LAN Controller Client Disconnection Vulnerability A vulnerability in the Web Management GUI of the Cisco Wireless LAN Controller (WLC) could allow an unauthenticated, remote attacker to trigger client disconnection. The vulnerability is due to a lack of access control to the Cisco WLC Web Management GUI. An attacker could exploit this vulnerability by connecting to the IP address of the C

CVE-2018-0388 Cisco Wireless LAN Controller Software Cross-Site Scripting Vulnerability CVE-2018-0388: Cisco Wireless LAN Controller Software Cross-Site Scripting Vulnerability A vulnerability in the web-based interface of Cisco Wireless LAN Controller (WLC) Software could allow an authenticated, remote attacker to conduct a cross-site scripting (XSS) attack against the user of the web-based interface of an affected system. The vulnerability is due to insufficient validation of user-supplied inp

CVE-2019-1797 Cisco Wireless LAN Controller Software Cross-Site Request Forgery Vulnerability CVE-2019-1797: Cisco Wireless LAN Controller Software Cross-Site Request Forgery Vulnerability A vulnerability in the web-based management interface of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to conduct a cross-site request forgery (CSRF) attack and perform arbitrary actions on the device with the privileges of the user, including modifying the device

CVE-2018-15395 Cisco Wireless LAN Controller Software Privilege Escalation Vulnerability CVE-2018-15395: Cisco Wireless LAN Controller Software Privilege Escalation Vulnerability A vulnerability in the authentication and authorization checking mechanisms of Cisco Wireless LAN Controller (WLC) Software could allow an authenticated, adjacent attacker to gain network access to a Cisco TrustSec domain. Under normal circumstances, this access should be prohibited. The vulnerability is due to the dyna

CVE-2018-0382 Cisco Wireless LAN Controller Software Session Hijacking Vulnerability CVE-2018-0382: Cisco Wireless LAN Controller Software Session Hijacking Vulnerability A vulnerability in the session identification management functionality of the web-based interface of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to hijack a valid user session on an affected system. The vulnerability exists because the affected software does not properly clear pr