CVE-2018-0245

Name of the Vulnerable Software and Affected Versions: Cisco 5500 and 8500 Series Wireless LAN Controller (WLC) Software (affected versions not specified)

Description: A vulnerability in the REST API could allow an unauthenticated, remote attacker to view system information that should be prohibited. The issue is due to incomplete input and validation checking mechanisms in the REST API URL request. An attacker could exploit this by sending a malicious URL to the REST API, potentially allowing them to view sensitive system information.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.