PT-2016-1107 · Cisco · Cisco Wireless Lan Controller+1

Publicado

2016-01-13

Atualizado

2021-04-16

CVE-2015-6314

CVSS v2.0

Alta

Vetor

AV:N/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller versions 7.6.x through 8.0 before 8.0.121.0 Cisco Wireless LAN Controller versions 8.1 before 8.1.131.0

Description The issue is related to weaknesses in the authentication procedure of the Cisco wireless LAN controller software. It may allow a remote attacker to modify configuration settings. An unauthenticated, remote attacker could exploit this issue to change the configuration of the device, potentially compromising it completely.

Recommendations For Cisco Wireless LAN Controller versions 7.6.x through 8.0 before 8.0.121.0, upgrade to version 8.0.121.0 or later. For Cisco Wireless LAN Controller versions 8.1 before 8.1.131.0, upgrade to version 8.1.131.0 or later.

Correção

Improper Authentication

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-287

Identificadores relacionados

BDU:2016-00301

CVE-2015-6314

Produtos afetados

Cisco Wireless Lan Controller

Cisco Wls

PT-2016-1107 · Cisco · Cisco Wireless Lan Controller+1

CVE-2015-6314

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6