CVE-2015-6341

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller (WLC) versions 7.4(140.0) through 8.0(120.0)

Description A lack of access control to the Cisco WLC Web Management GUI allows an unauthenticated, remote attacker to trigger client disconnection. The attacker must connect to the Cisco WLC management IP address on port 80 or port 443 via its wired interface to exploit this issue.

Recommendations For versions 7.4(140.0) and 8.0(120.0), consider implementing a workaround that mitigates this issue, as no software updates are currently available to address it. At the moment, there is no information about a newer version that contains a fix for this vulnerability.