Shodan
Vulnerabilities
Vulnerable Software
Cisco:  >> Wireless Lan Controller Software  >> 7.3.101.0  Security Vulnerabilities
CVE-2014-0701
Cisco Wireless LAN Controller (WLC) devices 7.0 before 7.0.250.0, 7.2, 7.3, and 7.4 before 7.4.110.0 do not properly deallocate memory, which allows remote attackers to cause a denial of service (reboot) by sending WebAuth login requests at a high rate, aka Bug ID CSCuf52361.
CVSS Score
7.8
EPSS Score
0.004
Published
2014-03-06
CVE-2014-0704
The IGMP implementation on Cisco Wireless LAN Controller (WLC) devices 4.x, 5.x, 6.x, 7.0 before 7.0.250.0, 7.1, 7.2, and 7.3, when IGMPv3 Snooping is enabled, allows remote attackers to cause a denial of service (memory over-read and device restart) via a crafted field in an IGMPv3 message, aka Bug ID CSCuh33240.
CVSS Score
7.1
EPSS Score
0.004
Published
2014-03-06
CVE-2014-0705
The multicast listener discovery (MLD) service on Cisco Wireless LAN Controller (WLC) devices 7.2, 7.3, 7.4 before 7.4.121.0, and 7.5, when MLDv2 Snooping is enabled, allows remote attackers to cause a denial of service (device restart) via a malformed IPv6 MLDv2 packet, aka Bug ID CSCuh74233.
CVSS Score
7.1
EPSS Score
0.004
Published
2014-03-06
CVE-2014-0706
Cisco Wireless LAN Controller (WLC) devices 7.2 before 7.2.115.2, 7.3, and 7.4 before 7.4.110.0 allow remote attackers to cause a denial of service (device restart) via a crafted 802.11 Ethernet frame, aka Bug ID CSCue87929.
CVSS Score
7.8
EPSS Score
0.004
Published
2014-03-06
CVE-2014-0707
Cisco Wireless LAN Controller (WLC) devices 7.2, 7.3, and 7.4 before 7.4.110.0 allow remote attackers to cause a denial of service (device restart) via a crafted 802.11 Ethernet frame, aka Bug ID CSCuf80681.
CVSS Score
7.8
EPSS Score
0.004
Published
2014-03-06
CVE-2013-1141
The mDNS snooping functionality on Cisco Wireless LAN Controller (WLC) devices with software 7.4.1.54 and earlier does not properly manage buffers, which allows remote authenticated users to cause a denial of service (device reload) via crafted mDNS packets, aka Bug ID CSCue04153.
CVSS Score
6.1
EPSS Score
0.002
Published
2013-02-28
CVE-2013-1104
The HTTP Profiling functionality on Cisco Wireless LAN Controller (WLC) devices with software 7.3.101.0 allows remote authenticated users to execute arbitrary code via a crafted HTTP User-Agent header, aka Bug ID CSCuc15636.
CVSS Score
9.0
EPSS Score
0.012
Published
2013-01-24


Products
Pricing
Contact Us

Shodan ® - All rights reserved