CVE-2018-5789

Name of the Vulnerable Software and Affected Versions: Extreme Networks ExtremeWireless WiNG versions 5.x before 5.8.6.9 Extreme Networks ExtremeWireless WiNG versions 5.9.x before 5.9.1.3

Description: An issue was discovered in Extreme Networks ExtremeWireless WiNG, where a Remote, Unauthenticated XML Entity Expansion Denial of Service can occur on the WiNG Access Point / Controller via crafted XML entities to the Web User Interface.

Recommendations: For versions 5.x before 5.8.6.9, update to version 5.8.6.9 or later. For versions 5.9.x before 5.9.1.3, update to version 5.9.1.3 or later.