Cisco Wireless Lan Controller — known CVE vulnerabilities
Every CVE whose affected-product data names Cisco Wireless Lan Controller, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (26)
CVE-2014-0703 — CVSS 10.0 (critical): Cisco Wireless LAN Controller (WLC) devices 7.4 before 7.4.110.0 distribute Aironet IOS software with a race condition in the status of the…
CVE-2020-3560 — CVSS 8.6 (high): A vulnerability in Cisco Aironet Access Points (APs) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) on…
CVE-2020-3559 — CVSS 8.6 (high): A vulnerability in Cisco Aironet Access Point (AP) Software could allow an unauthenticated, remote attacker to cause an affected device to…
CVE-2014-0706 — CVSS 7.8 (high): Cisco Wireless LAN Controller (WLC) devices 7.2 before 7.2.115.2, 7.3, and 7.4 before 7.4.110.0 allow remote attackers to cause a denial of…
CVE-2018-0417 — CVSS 7.8 (high): A vulnerability in TACACS authentication with Cisco Wireless LAN Controller (WLC) Software could allow an authenticated, local attacker to…
CVE-2014-0707 — CVSS 7.8 (high): Cisco Wireless LAN Controller (WLC) devices 7.2, 7.3, and 7.4 before 7.4.110.0 allow remote attackers to cause a denial of service (device…
CVE-2020-3552 — CVSS 7.4 (high): A vulnerability in the Ethernet packet handling of Cisco Aironet Access Points (APs) Software could allow an unauthenticated, adjacent…
CVE-2015-0622 — CVSS 7.1 (high): The Wireless Intrusion Detection (aka WIDS) functionality on Cisco Wireless LAN Controller (WLC) devices allows remote attackers to cause a…
CVE-2014-0704 — CVSS 7.1 (high): The IGMP implementation on Cisco Wireless LAN Controller (WLC) devices 4.x, 5.x, 6.x, 7.0 before 7.0.250.0, 7.1, 7.2, and 7.3, when IGMPv3…
CVE-2014-0705 — CVSS 7.1 (high): The multicast listener discovery (MLD) service on Cisco Wireless LAN Controller (WLC) devices 7.2, 7.3, 7.4 before 7.4.121.0, and 7.5, when…
CVE-2013-6684 — CVSS 6.8 (medium): The web framework on Cisco Wireless LAN Controller (WLC) devices does not properly validate configuration parameters, which allows remote…
CVE-2019-1799 — CVSS 6.5 (medium): A vulnerability in the handling of Inter-Access Point Protocol (IAPP) messages by Cisco Wireless LAN Controller (WLC) Software could allow…
CVE-2016-6376 — CVSS 6.5 (medium): The Adaptive Wireless Intrusion Prevention System (wIPS) feature on Cisco Wireless LAN Controller (WLC) devices before 8.0.140.0, 8.1.x and…
CVE-2016-9194 — CVSS 6.5 (medium): A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software…
CVE-2019-1796 — CVSS 6.5 (medium): A vulnerability in the handling of Inter-Access Point Protocol (IAPP) messages by Cisco Wireless LAN Controller (WLC) Software could allow…
CVE-2019-1800 — CVSS 6.5 (medium): A vulnerability in the handling of Inter-Access Point Protocol (IAPP) messages by Cisco Wireless LAN Controller (WLC) Software could allow…
CVE-2013-3474 — CVSS 6.3 (medium): The Web Administrator Interface on Cisco Wireless LAN Controller (WLC) devices allows remote authenticated users to cause a denial of…
CVE-2013-1141 — CVSS 6.1 (medium): The mDNS snooping functionality on Cisco Wireless LAN Controller (WLC) devices with software 7.4.1.54 and earlier does not properly manage…
CVE-2015-0756 — CVSS 6.1 (medium): Cisco Wireless LAN Controller (WLC) devices with software 7.4(1.1) allow remote attackers to cause a denial of service (wireless-networking…
CVE-2015-6311 — CVSS 6.1 (medium): Cisco Wireless LAN Controller (WLC) devices with software 7.0(240.0), 7.3(101.0), and 7.4(1.19) allow remote attackers to cause a denial of…
CVE-2014-3291 — CVSS 5.7 (medium): Cisco Wireless LAN Controller (WLC) devices allow remote attackers to cause a denial of service (NULL pointer dereference and device…
CVE-2016-9195 — CVSS 5.3 (medium): A vulnerability in RADIUS Change of Authorization (CoA) request processing in the Cisco Wireless LAN Controller (WLC) could allow an…
CVE-2013-1235 — CVSS 5.0 (medium): Cisco Wireless LAN Controller (WLC) devices do not properly address the resource consumption of terminated TELNET sessions, which allows…
CVE-2013-6699 — CVSS 5.0 (medium): The Control and Provisioning of Wireless Access Points (CAPWAP) protocol implementation on Cisco Wireless LAN Controller (WLC) devices…
CVE-2013-6698 — CVSS 4.3 (medium): The web interface on Cisco Wireless LAN Controller (WLC) devices does not properly restrict use of IFRAME elements, which makes it easier…
CVE-2013-5519 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in the management interface on Cisco Wireless LAN Controller (WLC) devices allows remote attackers…