Configuration Change Vulnerability in Cisco Wireless LAN Controller
CVE-2015-6314

9.8CRITICAL

Key Information:

Vendor: Cisco
Status: Wireless Lan Controller Software
Vendor: CVE Published:; 15 January 2016

What is CVE-2015-6314?

Cisco Wireless LAN Controller devices running specific software versions are susceptible to a vulnerability that allows remote attackers to modify configuration settings without authentication. This issue arises from unspecified vectors and could potentially lead to unauthorized control over network configurations, impacting the overall security posture of affected networks.

References

http://tools.cisco.com/security/center/content/CiscoSecur...

vendor-advisoryx_refsource_CISCO

http://www.securitytracker.com/id/1034665

vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:

9.8

Severity:

CRITICAL

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 15, 2016
Vulnerability Reserved
Aug 17, 2015