RADIUS Disconnect Vulnerability in Cisco Wireless LAN Controller
CVE-2015-6302

Currently unrated

Key Information:

Vendor: Cisco
Status: Wireless Lan Controller Software
Vendor: CVE Published:; 26 September 2015

Summary

The RADIUS functionality in specific versions of Cisco Wireless LAN Controller devices is susceptible to a security flaw that allows remote adversaries to disconnect arbitrary user sessions. By crafting specific Disconnect-Request UDP packets, an attacker can exploit this vulnerability, leading to potential service disruptions. This issue underscores the need for robust security practices and timely updates for affected products to mitigate risks.

References

http://www.securitytracker.com/id/1033624

vdb-entryx_refsource_SECTRACK

http://tools.cisco.com/security/center/viewAlert.x?alertI...

vendor-advisoryx_refsource_CISCO

Timeline

Vulnerability published
Sep 26, 2015
Vulnerability Reserved
Aug 17, 2015