CVE-2016-6375

5.3MEDIUM

Key Information:

Vendor
Cisco
Status
Wireless Lan Controller Software
Wireless Lan Controller Software 6.0
Wireless Lan Controller Software 7.0
Wireless Lan Controller Software 7.1
Vendor
CVE Published:
12 September 2016

Summary

Cisco Wireless LAN Controller (WLC) devices before 8.0.140.0, 8.1.x and 8.2.x before 8.2.121.0, and 8.3.x before 8.3.102.0 allow remote attackers to cause a denial of service (device reload) by sending crafted Inter-Access Point Protocol (IAPP) packets and then sending a traffic stream metrics (TSM) information request over SNMP, aka Bug ID CSCuz40221.

References

http://tools.cisco.com/security/center/content/CiscoSecur...
vendor-advisoryx_refsource_CISCO
http://www.securitytracker.com/id/1036721
vdb-entryx_refsource_SECTRACK
http://www.securityfocus.com/bid/92712
vdb-entryx_refsource_BID

CVSS V3.1

Score:
5.3
Severity:
MEDIUM
Confidentiality:
None
Integrity:
None
Availability:
None
Attack Vector:
Adjacent Network
Attack Complexity:
High
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

  • Vulnerability Reserved

.