PT-2017-16129 · Cisco · Cisco Wireless Lan Controller+1

Published

2017-04-05

Updated

2021-11-08

CVE-2017-3832

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller version 8.3.102.0

Description A vulnerability in the web management interface could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The issue is due to a missing internal handler for a specific request. An attacker could exploit this by accessing a specific hidden URL on the GUI web management interface, potentially causing a reload of the device and resulting in a DoS condition.

Recommendations For Cisco Wireless LAN Controller version 8.3.102.0, update to a newer version that addresses this issue, as software updates have been released by Cisco to fix the vulnerability.

Fix

DoS

Improper Handling of Exceptional Conditions

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-755CWE-264

Related Identifiers

CVE-2017-3832

Affected Products

Cisco Wireless Lan Controller

Cisco Wls

PT-2017-16129 · Cisco · Cisco Wireless Lan Controller+1

CVE-2017-3832

Weakness Enumeration

Related Identifiers

Affected Products

References · 5