CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-3262

A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol handler of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to insufficient validation of CAPWAP packets. An attacker could exploit this vulnerability by sending a malformed CAPWAP packet to an affected device. A successful exploit could allow the attacker to cause the affected device to restart, resulting in a DoS condition.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.4%

CVSS Severity

CVSS v3 Score 8.6

CVSS v2 Score 5.0

References

Products affected by CVE-2020-3262

Cisco » 5508 Wireless Controller » Version: N/A

cpe:2.3:h:cisco:5508_wireless_controller:-
Cisco » 5520 Wireless Controller » Version: N/A

cpe:2.3:h:cisco:5520_wireless_controller:-
Cisco » 5508 Wireless Controller Firmware » Version: 8.8(120.0)

cpe:2.3:o:cisco:5508_wireless_controller_firmware:8.8(120.0)
Cisco » 5520 Wireless Controller Firmware » Version: 8.8(120.0)

cpe:2.3:o:cisco:5520_wireless_controller_firmware:8.8(120.0)

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-3262

Products

Pricing

Contact Us