CVE-2016-1362 - Cisco AireOS 4.1 through 7.4.120.0, 7.5.x, and 7.6.100.0 on Wireless LAN Controller (WLC) devices al

CVE-2016-1362

Summary

Cisco AireOS 4.1 through 7.4.120.0, 7.5.x, and 7.6.100.0 on Wireless LAN Controller (WLC) devices allows remote attackers to cause a denial of service (device reload) via a crafted HTTP request, aka Bug ID CSCun86747.

References

Vulnerable Configurations

cpe:2.3:o:cisco:aireos:4.1_base:*:*:*:*:*:*:*
cpe:2.3:o:cisco:aireos:4.1_base:*:*:*:*:*:*:*
cpe:2.3:o:cisco:aireos:7.4:120.0:*:*:*:*:*:*
cpe:2.3:o:cisco:aireos:7.4:120.0:*:*:*:*:*:*
cpe:2.3:o:cisco:aireos:7.5_base:*:*:*:*:*:*:*
cpe:2.3:o:cisco:aireos:7.5_base:*:*:*:*:*:*:*
cpe:2.3:o:cisco:aireos:7.6:100.0:*:*:*:*:*:*
cpe:2.3:o:cisco:aireos:7.6:100.0:*:*:*:*:*:*

CVSS

Base:	7.8 (as of 03-12-2016 - 03:20)
Impact:
Exploitability:

CWE

CWE-399

CAPEC

Access

Vector	Complexity	Authentication
NETWORK	LOW	NONE

Impact

Confidentiality	Integrity	Availability
NONE	NONE	COMPLETE

cvss-vector via4

AV:N/AC:L/Au:N/C:N/I:N/A:C

refmap via4

cisco	20160420 Cisco Wireless LAN Controller Management Interface Denial of Service Vulnerability
sectrack	1035634

Last major update

03-12-2016 - 03:20

Published

21-04-2016 - 11:00

Last modified

03-12-2016 - 03:20