cvelistv5 - CVE-2016-9194

CVE-2016-9194 (GCVE-0-2016-9194)

Vulnerability from cvelistv5 – Published: 2017-04-06 18:00 – Updated: 2024-08-06 02:42

Summary

Severity ?

No CVSS data available.

CWE

CWE-399

Assigner

cisco

References

URL

Tags

	http://www.securityfocus.com/bid/97424	vdb-entryx_refsource_BID
	http://www.securitytracker.com/id/1038182	vdb-entryx_refsource_SECTRACK
	https://tools.cisco.com/security/center/content/C…	x_refsource_CONFIRM

Impacted products

	Vendor	Product	Version
	n/a	Cisco Wireless LAN Controller	Affected: Cisco Wireless LAN Controller

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-06T02:42:11.248Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "97424",
            "tags": [
              "vdb-entry",
              "x_refsource_BID",
              "x_transferred"
            ],
            "url": "http://www.securityfocus.com/bid/97424"
          },
          {
            "name": "1038182",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1038182"
          },
          {
            "tags": [
              "x_refsource_CONFIRM",
              "x_transferred"
            ],
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "Cisco Wireless LAN Controller",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "Cisco Wireless LAN Controller"
            }
          ]
        }
      ],
      "datePublic": "2017-04-06T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the 802.11 WME packet header. An attacker could exploit this vulnerability by sending malformed 802.11 WME frames to a targeted device. A successful exploit could allow the attacker to cause the WLC to reload unexpectedly. The fixed versions are 8.0.140.0, 8.2.130.0, and 8.3.111.0. Cisco Bug IDs: CSCva86353."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "cweId": "CWE-399",
              "description": "CWE-399",
              "lang": "en",
              "type": "CWE"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2017-07-11T09:57:01",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "97424",
          "tags": [
            "vdb-entry",
            "x_refsource_BID"
          ],
          "url": "http://www.securityfocus.com/bid/97424"
        },
        {
          "name": "1038182",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1038182"
        },
        {
          "tags": [
            "x_refsource_CONFIRM"
          ],
          "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2016-9194",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "Cisco Wireless LAN Controller",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "Cisco Wireless LAN Controller"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the 802.11 WME packet header. An attacker could exploit this vulnerability by sending malformed 802.11 WME frames to a targeted device. A successful exploit could allow the attacker to cause the WLC to reload unexpectedly. The fixed versions are 8.0.140.0, 8.2.130.0, and 8.3.111.0. Cisco Bug IDs: CSCva86353."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "CWE-399"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "97424",
              "refsource": "BID",
              "url": "http://www.securityfocus.com/bid/97424"
            },
            {
              "name": "1038182",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1038182"
            },
            {
              "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc",
              "refsource": "CONFIRM",
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2016-9194",
    "datePublished": "2017-04-06T18:00:00",
    "dateReserved": "2016-11-06T00:00:00",
    "dateUpdated": "2024-08-06T02:42:11.248Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:5.2.157.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"906F9233-7DEF-4742-9AF3-50B6C231A9F7\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:5.2.169.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9BE9F19D-1701-40BC-A374-111B5F38BE46\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:6.0_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6BD7A5C2-6354-449D-B715-2E9FFDD2E6FA\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.0_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"3A1B0325-D287-4286-B7E9-DB148881D9E3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.1_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D547FB25-6486-4A77-99E6-C8F8EA9D5407\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.2_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8FE090AB-88B8-4A42-9CED-FF54B2C812E0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.3.101.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1538A4DA-6D77-4289-B47C-9BE2C7BDC036\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.3.103.8:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"04FDC2A1-F522-440B-9C5E-18729C0C34E0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.3.112:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"DE292FF9-9674-4251-9EF3-AD4A4F9CCC15\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.3_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B0782064-881F-4ADB-880A-E005AFFE5ADC\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.4.1.1:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"8C1E6716-BBDC-43FB-8016-10281E360049\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.4.100:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E98435C2-EAD9-45BE-AE9A-CD1499F4239F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.4.100.60:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"75473B22-A59F-471A-9DB8-8FA9FD504DC4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.4.110.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"12FD9D8F-2E52-4CA9-94BD-65F8B1FF26C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.4.121.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"05AEADF2-9986-432A-8416-1D138C8C94D5\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.4_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"246EDF05-FF4B-47FB-9A72-6417F239F0EB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.5.102.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E2FE2157-DE6C-4002-A209-091457BFA7F9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.5.102.11:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B3CB2EE4-565E-4EC0-978C-80738C5F8307\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.5_base:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ED69F11C-153E-442B-8F7C-57961A25AAEB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.6.1.62:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"C3D30E7A-4B2C-4A1E-B52C-C209757829F3\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.6.100.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FB33D00D-7DCB-4150-9907-1365066F3767\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.6.110.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9051AFDE-A519-4701-9AD5-CBA7AEE46B0C\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.6.120.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"354D3747-A6AB-41AA-8DD4-C17C0461EF7B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:7.6.130.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1FE75C02-0E3E-4BA3-8E86-2FEA9EEB7E40\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:8.0.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"E6EA1478-B988-4DD7-A937-FB91FB0DEDB2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:8.0.0.30220.385:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B467125C-5491-4066-A35A-891B78AD0A53\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:8.0.72.140:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"13FACACE-CF96-474D-BA3E-F289BD96CF6F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:8.0.100:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"0E439FF8-91DE-43E9-BE65-59BCEC52F3BF\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:8.0.115.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"1B798E5A-E108-4465-BD2B-A2F4ADFDB363\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:8.0.120.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"97971195-3E04-4AC1-95BC-479CE2CAB389\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:8.0.121.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"031A8A69-4E46-4EE5-B0A8-0A74E7C66A95\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:8.1.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B00858F6-C0AD-4822-9990-E0126AB43EF6\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:8.1.104.37:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B6528ED0-853F-4475-AAD7-7F9B5E0DFE3B\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:8.1.111.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6B83E372-CFD8-4DDD-80F7-E3128D0C5E72\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:8.1.122.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"D7D5A815-BA48-43A5-8CD4-2E580B2CB0D0\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller:8.1.130.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"BA6129F0-5195-41AC-AFF3-50518B1ADB9E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_6.0:182.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"55746AD1-5C44-4144-BBE3-53F4D654E57A\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_6.0:188.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"A74E0159-DA37-4AC2-8AA3-D6FA83F0DFF4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_6.0:196.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B297FCF3-6FC4-4C0E-89A9-A760FF9A58CB\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_6.0:199.4:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"F40022CC-A0AB-47EA-B089-9A3E66E49727\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_6.0:202.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"ED3D92BC-3052-4B3E-8152-ACFC8B507D47\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_7.0:98.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"5AEC6779-072A-43F2-AD75-9056D783B99D\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_7.0:98.218:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"88D96498-EF62-4B8E-AB8A-E326A306D473\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_7.0:116.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"9BA2A940-A36F-4903-9A9D-DB0269D01C9F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_7.0:220.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"171F7669-64D7-4E1E-9766-86B5A1085B2E\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_7.0:240.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"FCCD4C58-E8A6-470C-8324-CAD6F149C87F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_7.0:250.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"97458DAB-1E88-4552-92D0-2C14B074E8C4\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_7.0:252.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"2FB2040D-5969-48D8-89FE-53C30B1483A2\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_7.1:91.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"6075E464-5D78-492A-B85F-1C053E9B8CE9\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_7.2:103.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"38F12EF1-A79E-446F-8A31-E188FF1C6B7F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_7.4:1.19:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"225D1199-74C7-4AAB-A434-F03DE0D57539\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_7.4:1.54:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"25A6025A-6BE3-4BCF-A884-2EE630752459\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:a:cisco:wireless_lan_controller_7.4:140.0:*:*:*:*:*:*:*\", \"matchCriteriaId\": \"B13ACDA7-F6C8-42E9-8748-14730F4D06D2\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the 802.11 WME packet header. An attacker could exploit this vulnerability by sending malformed 802.11 WME frames to a targeted device. A successful exploit could allow the attacker to cause the WLC to reload unexpectedly. The fixed versions are 8.0.140.0, 8.2.130.0, and 8.3.111.0. Cisco Bug IDs: CSCva86353.\"}, {\"lang\": \"es\", \"value\": \"Una vulnerabilidad en 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software podr\\u00eda permitir que un atacante no autenticado adyacente, provoque una condici\\u00f3n de denegaci\\u00f3n de servicio(DoS). La vulnerabilidad se debe a la validaci\\u00f3n de entrada incompleta del encabezado de paquete 802.11 WME. Un atacante podr\\u00eda explotar esta vulnerabilidad enviando marcos malformados WME 802.11 a un dispositivo de destino. Un exploit exitoso podr\\u00eda permitir al atacante hacer que el WLC se recargue inesperadamente. Las versiones fijas son 8.0.140.0, 8.2.130.0, y 8.3.111.0. Cisco Bug IDs: CSCva86353.\"}]",
      "id": "CVE-2016-9194",
      "lastModified": "2024-11-21T03:00:46.667",
      "metrics": "{\"cvssMetricV30\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.0\", \"vectorString\": \"CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\", \"baseScore\": 6.5, \"baseSeverity\": \"MEDIUM\", \"attackVector\": \"ADJACENT_NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 2.8, \"impactScore\": 3.6}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:A/AC:L/Au:N/C:N/I:N/A:C\", \"baseScore\": 6.1, \"accessVector\": \"ADJACENT_NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"NONE\", \"integrityImpact\": \"NONE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"MEDIUM\", \"exploitabilityScore\": 6.5, \"impactScore\": 6.9, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false, \"userInteractionRequired\": false}]}",
      "published": "2017-04-06T18:59:00.230",
      "references": "[{\"url\": \"http://www.securityfocus.com/bid/97424\", \"source\": \"ykramarz@cisco.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1038182\", \"source\": \"ykramarz@cisco.com\"}, {\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc\", \"source\": \"ykramarz@cisco.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securityfocus.com/bid/97424\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://www.securitytracker.com/id/1038182\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\"}, {\"url\": \"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}]",
      "sourceIdentifier": "ykramarz@cisco.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"ykramarz@cisco.com\", \"type\": \"Secondary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-399\"}]}, {\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-399\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2016-9194\",\"sourceIdentifier\":\"psirt@cisco.com\",\"published\":\"2017-04-06T18:59:00.230\",\"lastModified\":\"2025-04-20T01:37:25.860\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the 802.11 WME packet header. An attacker could exploit this vulnerability by sending malformed 802.11 WME frames to a targeted device. A successful exploit could allow the attacker to cause the WLC to reload unexpectedly. The fixed versions are 8.0.140.0, 8.2.130.0, and 8.3.111.0. Cisco Bug IDs: CSCva86353.\"},{\"lang\":\"es\",\"value\":\"Una vulnerabilidad en 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software podr\u00eda permitir que un atacante no autenticado adyacente, provoque una condici\u00f3n de denegaci\u00f3n de servicio(DoS). La vulnerabilidad se debe a la validaci\u00f3n de entrada incompleta del encabezado de paquete 802.11 WME. Un atacante podr\u00eda explotar esta vulnerabilidad enviando marcos malformados WME 802.11 a un dispositivo de destino. Un exploit exitoso podr\u00eda permitir al atacante hacer que el WLC se recargue inesperadamente. Las versiones fijas son 8.0.140.0, 8.2.130.0, y 8.3.111.0. Cisco Bug IDs: CSCva86353.\"}],\"metrics\":{\"cvssMetricV30\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.0\",\"vectorString\":\"CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H\",\"baseScore\":6.5,\"baseSeverity\":\"MEDIUM\",\"attackVector\":\"ADJACENT_NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":2.8,\"impactScore\":3.6}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:A/AC:L/Au:N/C:N/I:N/A:C\",\"baseScore\":6.1,\"accessVector\":\"ADJACENT_NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"NONE\",\"integrityImpact\":\"NONE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"MEDIUM\",\"exploitabilityScore\":6.5,\"impactScore\":6.9,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"psirt@cisco.com\",\"type\":\"Secondary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-399\"}]},{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-399\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:5.2.157.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"906F9233-7DEF-4742-9AF3-50B6C231A9F7\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:5.2.169.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BE9F19D-1701-40BC-A374-111B5F38BE46\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:6.0_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6BD7A5C2-6354-449D-B715-2E9FFDD2E6FA\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.0_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"3A1B0325-D287-4286-B7E9-DB148881D9E3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.1_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D547FB25-6486-4A77-99E6-C8F8EA9D5407\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.2_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8FE090AB-88B8-4A42-9CED-FF54B2C812E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.3.101.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1538A4DA-6D77-4289-B47C-9BE2C7BDC036\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.3.103.8:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"04FDC2A1-F522-440B-9C5E-18729C0C34E0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.3.112:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DE292FF9-9674-4251-9EF3-AD4A4F9CCC15\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.3_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B0782064-881F-4ADB-880A-E005AFFE5ADC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.4.1.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8C1E6716-BBDC-43FB-8016-10281E360049\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.4.100:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E98435C2-EAD9-45BE-AE9A-CD1499F4239F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.4.100.60:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"75473B22-A59F-471A-9DB8-8FA9FD504DC4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.4.110.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"12FD9D8F-2E52-4CA9-94BD-65F8B1FF26C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.4.121.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"05AEADF2-9986-432A-8416-1D138C8C94D5\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.4_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"246EDF05-FF4B-47FB-9A72-6417F239F0EB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.5.102.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E2FE2157-DE6C-4002-A209-091457BFA7F9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.5.102.11:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B3CB2EE4-565E-4EC0-978C-80738C5F8307\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.5_base:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ED69F11C-153E-442B-8F7C-57961A25AAEB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.6.1.62:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C3D30E7A-4B2C-4A1E-B52C-C209757829F3\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.6.100.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FB33D00D-7DCB-4150-9907-1365066F3767\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.6.110.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9051AFDE-A519-4701-9AD5-CBA7AEE46B0C\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.6.120.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"354D3747-A6AB-41AA-8DD4-C17C0461EF7B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:7.6.130.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1FE75C02-0E3E-4BA3-8E86-2FEA9EEB7E40\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:8.0.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E6EA1478-B988-4DD7-A937-FB91FB0DEDB2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:8.0.0.30220.385:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B467125C-5491-4066-A35A-891B78AD0A53\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:8.0.72.140:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"13FACACE-CF96-474D-BA3E-F289BD96CF6F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:8.0.100:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"0E439FF8-91DE-43E9-BE65-59BCEC52F3BF\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:8.0.115.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1B798E5A-E108-4465-BD2B-A2F4ADFDB363\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:8.0.120.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97971195-3E04-4AC1-95BC-479CE2CAB389\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:8.0.121.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"031A8A69-4E46-4EE5-B0A8-0A74E7C66A95\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:8.1.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B00858F6-C0AD-4822-9990-E0126AB43EF6\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:8.1.104.37:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B6528ED0-853F-4475-AAD7-7F9B5E0DFE3B\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:8.1.111.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6B83E372-CFD8-4DDD-80F7-E3128D0C5E72\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:8.1.122.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"D7D5A815-BA48-43A5-8CD4-2E580B2CB0D0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller:8.1.130.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"BA6129F0-5195-41AC-AFF3-50518B1ADB9E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_6.0:182.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"55746AD1-5C44-4144-BBE3-53F4D654E57A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_6.0:188.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"A74E0159-DA37-4AC2-8AA3-D6FA83F0DFF4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_6.0:196.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B297FCF3-6FC4-4C0E-89A9-A760FF9A58CB\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_6.0:199.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"F40022CC-A0AB-47EA-B089-9A3E66E49727\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_6.0:202.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"ED3D92BC-3052-4B3E-8152-ACFC8B507D47\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_7.0:98.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5AEC6779-072A-43F2-AD75-9056D783B99D\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_7.0:98.218:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"88D96498-EF62-4B8E-AB8A-E326A306D473\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_7.0:116.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BA2A940-A36F-4903-9A9D-DB0269D01C9F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_7.0:220.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"171F7669-64D7-4E1E-9766-86B5A1085B2E\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_7.0:240.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"FCCD4C58-E8A6-470C-8324-CAD6F149C87F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_7.0:250.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"97458DAB-1E88-4552-92D0-2C14B074E8C4\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_7.0:252.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"2FB2040D-5969-48D8-89FE-53C30B1483A2\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_7.1:91.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6075E464-5D78-492A-B85F-1C053E9B8CE9\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_7.2:103.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"38F12EF1-A79E-446F-8A31-E188FF1C6B7F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_7.4:1.19:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"225D1199-74C7-4AAB-A434-F03DE0D57539\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_7.4:1.54:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"25A6025A-6BE3-4BCF-A884-2EE630752459\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:cisco:wireless_lan_controller_7.4:140.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"B13ACDA7-F6C8-42E9-8748-14730F4D06D2\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/97424\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1038182\",\"source\":\"psirt@cisco.com\"},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securityfocus.com/bid/97424\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securitytracker.com/id/1038182\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\"},{\"url\":\"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]}]}}"
  }
}

FKIE_CVE-2016-9194

Vulnerability from fkie_nvd - Published: 2017-04-06 18:59 - Updated: 2025-04-20 01:37

Severity ?

6.5 (Medium) - CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Summary

References

URL	Tags
psirt@cisco.com	http://www.securityfocus.com/bid/97424	Third Party Advisory, VDB Entry
psirt@cisco.com	http://www.securitytracker.com/id/1038182
psirt@cisco.com	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securityfocus.com/bid/97424	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1038182
af854a3a-2127-422b-91ae-364da2661108	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc	Vendor Advisory

Impacted products

Vendor	Product	Version
cisco	wireless_lan_controller	5.2.157.0
cisco	wireless_lan_controller	5.2.169.0
cisco	wireless_lan_controller	6.0_base
cisco	wireless_lan_controller	7.0_base
cisco	wireless_lan_controller	7.1_base
cisco	wireless_lan_controller	7.2_base
cisco	wireless_lan_controller	7.3.101.0
cisco	wireless_lan_controller	7.3.103.8
cisco	wireless_lan_controller	7.3.112
cisco	wireless_lan_controller	7.3_base
cisco	wireless_lan_controller	7.4.1.1
cisco	wireless_lan_controller	7.4.100
cisco	wireless_lan_controller	7.4.100.60
cisco	wireless_lan_controller	7.4.110.0
cisco	wireless_lan_controller	7.4.121.0
cisco	wireless_lan_controller	7.4_base
cisco	wireless_lan_controller	7.5.102.0
cisco	wireless_lan_controller	7.5.102.11
cisco	wireless_lan_controller	7.5_base
cisco	wireless_lan_controller	7.6.1.62
cisco	wireless_lan_controller	7.6.100.0
cisco	wireless_lan_controller	7.6.110.0
cisco	wireless_lan_controller	7.6.120.0
cisco	wireless_lan_controller	7.6.130.0
cisco	wireless_lan_controller	8.0.0
cisco	wireless_lan_controller	8.0.0.30220.385
cisco	wireless_lan_controller	8.0.72.140
cisco	wireless_lan_controller	8.0.100
cisco	wireless_lan_controller	8.0.115.0
cisco	wireless_lan_controller	8.0.120.0
cisco	wireless_lan_controller	8.0.121.0
cisco	wireless_lan_controller	8.1.0
cisco	wireless_lan_controller	8.1.104.37
cisco	wireless_lan_controller	8.1.111.0
cisco	wireless_lan_controller	8.1.122.0
cisco	wireless_lan_controller	8.1.130.0
cisco	wireless_lan_controller_6.0	182.0
cisco	wireless_lan_controller_6.0	188.0
cisco	wireless_lan_controller_6.0	196.0
cisco	wireless_lan_controller_6.0	199.4
cisco	wireless_lan_controller_6.0	202.0
cisco	wireless_lan_controller_7.0	98.0
cisco	wireless_lan_controller_7.0	98.218
cisco	wireless_lan_controller_7.0	116.0
cisco	wireless_lan_controller_7.0	220.0
cisco	wireless_lan_controller_7.0	240.0
cisco	wireless_lan_controller_7.0	250.0
cisco	wireless_lan_controller_7.0	252.0
cisco	wireless_lan_controller_7.1	91.0
cisco	wireless_lan_controller_7.2	103.0
cisco	wireless_lan_controller_7.4	1.19
cisco	wireless_lan_controller_7.4	1.54
cisco	wireless_lan_controller_7.4	140.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:5.2.157.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "906F9233-7DEF-4742-9AF3-50B6C231A9F7",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:5.2.169.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "9BE9F19D-1701-40BC-A374-111B5F38BE46",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:6.0_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "6BD7A5C2-6354-449D-B715-2E9FFDD2E6FA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.0_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "3A1B0325-D287-4286-B7E9-DB148881D9E3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.1_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "D547FB25-6486-4A77-99E6-C8F8EA9D5407",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.2_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "8FE090AB-88B8-4A42-9CED-FF54B2C812E0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.3.101.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "1538A4DA-6D77-4289-B47C-9BE2C7BDC036",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.3.103.8:*:*:*:*:*:*:*",
              "matchCriteriaId": "04FDC2A1-F522-440B-9C5E-18729C0C34E0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.3.112:*:*:*:*:*:*:*",
              "matchCriteriaId": "DE292FF9-9674-4251-9EF3-AD4A4F9CCC15",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.3_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "B0782064-881F-4ADB-880A-E005AFFE5ADC",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.4.1.1:*:*:*:*:*:*:*",
              "matchCriteriaId": "8C1E6716-BBDC-43FB-8016-10281E360049",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.4.100:*:*:*:*:*:*:*",
              "matchCriteriaId": "E98435C2-EAD9-45BE-AE9A-CD1499F4239F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.4.100.60:*:*:*:*:*:*:*",
              "matchCriteriaId": "75473B22-A59F-471A-9DB8-8FA9FD504DC4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.4.110.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "12FD9D8F-2E52-4CA9-94BD-65F8B1FF26C4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.4.121.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "05AEADF2-9986-432A-8416-1D138C8C94D5",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.4_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "246EDF05-FF4B-47FB-9A72-6417F239F0EB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.5.102.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "E2FE2157-DE6C-4002-A209-091457BFA7F9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.5.102.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "B3CB2EE4-565E-4EC0-978C-80738C5F8307",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.5_base:*:*:*:*:*:*:*",
              "matchCriteriaId": "ED69F11C-153E-442B-8F7C-57961A25AAEB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.6.1.62:*:*:*:*:*:*:*",
              "matchCriteriaId": "C3D30E7A-4B2C-4A1E-B52C-C209757829F3",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.6.100.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "FB33D00D-7DCB-4150-9907-1365066F3767",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.6.110.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "9051AFDE-A519-4701-9AD5-CBA7AEE46B0C",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.6.120.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "354D3747-A6AB-41AA-8DD4-C17C0461EF7B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:7.6.130.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "1FE75C02-0E3E-4BA3-8E86-2FEA9EEB7E40",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "E6EA1478-B988-4DD7-A937-FB91FB0DEDB2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.0.30220.385:*:*:*:*:*:*:*",
              "matchCriteriaId": "B467125C-5491-4066-A35A-891B78AD0A53",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.72.140:*:*:*:*:*:*:*",
              "matchCriteriaId": "13FACACE-CF96-474D-BA3E-F289BD96CF6F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.100:*:*:*:*:*:*:*",
              "matchCriteriaId": "0E439FF8-91DE-43E9-BE65-59BCEC52F3BF",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.115.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "1B798E5A-E108-4465-BD2B-A2F4ADFDB363",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.120.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "97971195-3E04-4AC1-95BC-479CE2CAB389",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.121.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "031A8A69-4E46-4EE5-B0A8-0A74E7C66A95",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:8.1.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "B00858F6-C0AD-4822-9990-E0126AB43EF6",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:8.1.104.37:*:*:*:*:*:*:*",
              "matchCriteriaId": "B6528ED0-853F-4475-AAD7-7F9B5E0DFE3B",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:8.1.111.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "6B83E372-CFD8-4DDD-80F7-E3128D0C5E72",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:8.1.122.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "D7D5A815-BA48-43A5-8CD4-2E580B2CB0D0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller:8.1.130.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "BA6129F0-5195-41AC-AFF3-50518B1ADB9E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_6.0:182.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "55746AD1-5C44-4144-BBE3-53F4D654E57A",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_6.0:188.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "A74E0159-DA37-4AC2-8AA3-D6FA83F0DFF4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_6.0:196.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "B297FCF3-6FC4-4C0E-89A9-A760FF9A58CB",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_6.0:199.4:*:*:*:*:*:*:*",
              "matchCriteriaId": "F40022CC-A0AB-47EA-B089-9A3E66E49727",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_6.0:202.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "ED3D92BC-3052-4B3E-8152-ACFC8B507D47",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:98.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "5AEC6779-072A-43F2-AD75-9056D783B99D",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:98.218:*:*:*:*:*:*:*",
              "matchCriteriaId": "88D96498-EF62-4B8E-AB8A-E326A306D473",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:116.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "9BA2A940-A36F-4903-9A9D-DB0269D01C9F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:220.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "171F7669-64D7-4E1E-9766-86B5A1085B2E",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:240.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "FCCD4C58-E8A6-470C-8324-CAD6F149C87F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:250.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "97458DAB-1E88-4552-92D0-2C14B074E8C4",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:252.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2FB2040D-5969-48D8-89FE-53C30B1483A2",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_7.1:91.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "6075E464-5D78-492A-B85F-1C053E9B8CE9",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_7.2:103.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "38F12EF1-A79E-446F-8A31-E188FF1C6B7F",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_7.4:1.19:*:*:*:*:*:*:*",
              "matchCriteriaId": "225D1199-74C7-4AAB-A434-F03DE0D57539",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_7.4:1.54:*:*:*:*:*:*:*",
              "matchCriteriaId": "25A6025A-6BE3-4BCF-A884-2EE630752459",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:a:cisco:wireless_lan_controller_7.4:140.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "B13ACDA7-F6C8-42E9-8748-14730F4D06D2",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the 802.11 WME packet header. An attacker could exploit this vulnerability by sending malformed 802.11 WME frames to a targeted device. A successful exploit could allow the attacker to cause the WLC to reload unexpectedly. The fixed versions are 8.0.140.0, 8.2.130.0, and 8.3.111.0. Cisco Bug IDs: CSCva86353."
    },
    {
      "lang": "es",
      "value": "Una vulnerabilidad en 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software podr\u00eda permitir que un atacante no autenticado adyacente, provoque una condici\u00f3n de denegaci\u00f3n de servicio(DoS). La vulnerabilidad se debe a la validaci\u00f3n de entrada incompleta del encabezado de paquete 802.11 WME. Un atacante podr\u00eda explotar esta vulnerabilidad enviando marcos malformados WME 802.11 a un dispositivo de destino. Un exploit exitoso podr\u00eda permitir al atacante hacer que el WLC se recargue inesperadamente. Las versiones fijas son 8.0.140.0, 8.2.130.0, y 8.3.111.0. Cisco Bug IDs: CSCva86353."
    }
  ],
  "id": "CVE-2016-9194",
  "lastModified": "2025-04-20T01:37:25.860",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "ADJACENT_NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 6.1,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 6.5,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ],
    "cvssMetricV30": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "ADJACENT_NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 6.5,
          "baseSeverity": "MEDIUM",
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
          "version": "3.0"
        },
        "exploitabilityScore": 2.8,
        "impactScore": 3.6,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2017-04-06T18:59:00.230",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/97424"
    },
    {
      "source": "psirt@cisco.com",
      "url": "http://www.securitytracker.com/id/1038182"
    },
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securityfocus.com/bid/97424"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "url": "http://www.securitytracker.com/id/1038182"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-399"
        }
      ],
      "source": "psirt@cisco.com",
      "type": "Secondary"
    },
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-399"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-42RW-VPHV-R65G

Vulnerability from github – Published: 2022-05-17 02:31 – Updated: 2022-05-17 02:31

Details

Severity ?

6.5 (Medium)


                  
                    CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2016-9194"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2017-04-06T18:59:00Z",
    "severity": "MODERATE"
  },
  "details": "A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the 802.11 WME packet header. An attacker could exploit this vulnerability by sending malformed 802.11 WME frames to a targeted device. A successful exploit could allow the attacker to cause the WLC to reload unexpectedly. The fixed versions are 8.0.140.0, 8.2.130.0, and 8.3.111.0. Cisco Bug IDs: CSCva86353.",
  "id": "GHSA-42rw-vphv-r65g",
  "modified": "2022-05-17T02:31:10Z",
  "published": "2022-05-17T02:31:10Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-9194"
    },
    {
      "type": "WEB",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc"
    },
    {
      "type": "WEB",
      "url": "http://www.securityfocus.com/bid/97424"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id/1038182"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
      "type": "CVSS_V3"
    }
  ]
}

CERTFR-2017-AVI-103

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été corrigées dans les produits Cisco. Elles permettent à un attaquant de provoquer une exécution de code arbitraire à distance, un déni de service à distance et un contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Cisco	N/A	Points d'accès Cisco Aironet séries 1830 et 1850 exécutant une version de Cisco Mobility Express antérieure à 8.2.111.0
Cisco	N/A	Cisco Wireless LAN Controller versions 8.3.x antérieures à 8.3.112.0
Cisco	N/A	Cisco Wireless LAN Controller versions antérieures à 8.2.141.0

References

Title

Publication Time

Tags

Bulletin de sécurité Cisco cisco-sa-20170405-wlc du 05 avril 2017	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20170405-ame du 05 avril 2017	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20170405-wlc3 du 05 avril 2017	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20170405-wlc2 du 05 avril 2017	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20170405-wlc3 du 05 avril 2017	-	other
Bulletin de sécurité Cisco cisco-sa-20170405-wlc2 du 05 avril 2017	-	other
Bulletin de sécurité Cisco cisco-sa-20170405-ame du 05 avril 2017	-	other
Bulletin de sécurité Cisco cisco-sa-20170405-wlc du 05 avril 2017	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Points d\u0027acc\u00e8s Cisco Aironet s\u00e9ries 1830 et 1850 ex\u00e9cutant une version de Cisco Mobility Express ant\u00e9rieure \u00e0 8.2.111.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Wireless LAN Controller versions 8.3.x ant\u00e9rieures \u00e0 8.3.112.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Wireless LAN Controller versions ant\u00e9rieures \u00e0 8.2.141.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2017-3834",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-3834"
    },
    {
      "name": "CVE-2017-3832",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-3832"
    },
    {
      "name": "CVE-2016-9219",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9219"
    },
    {
      "name": "CVE-2016-9194",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9194"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-wlc3 du 05    avril 2017",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc3"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-wlc2 du 05    avril 2017",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc2"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-ame du 05    avril 2017",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-ame"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-wlc du 05    avril 2017",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc"
    }
  ],
  "reference": "CERTFR-2017-AVI-103",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2017-04-06T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eles produits Cisco\u003c/span\u003e. Elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un\nd\u00e9ni de service \u00e0 distance et un contournement de la politique de\ns\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Cisco",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-wlc du 05 avril 2017",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-ame du 05 avril 2017",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-wlc3 du 05 avril 2017",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-wlc2 du 05 avril 2017",
      "url": null
    }
  ]
}

CERTFR-2017-AVI-103

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Cisco	N/A	Points d'accès Cisco Aironet séries 1830 et 1850 exécutant une version de Cisco Mobility Express antérieure à 8.2.111.0
Cisco	N/A	Cisco Wireless LAN Controller versions 8.3.x antérieures à 8.3.112.0
Cisco	N/A	Cisco Wireless LAN Controller versions antérieures à 8.2.141.0

References

Title

Publication Time

Tags

Bulletin de sécurité Cisco cisco-sa-20170405-wlc du 05 avril 2017	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20170405-ame du 05 avril 2017	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20170405-wlc3 du 05 avril 2017	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20170405-wlc2 du 05 avril 2017	None	vendor-advisory
Bulletin de sécurité Cisco cisco-sa-20170405-wlc3 du 05 avril 2017	-	other
Bulletin de sécurité Cisco cisco-sa-20170405-wlc2 du 05 avril 2017	-	other
Bulletin de sécurité Cisco cisco-sa-20170405-ame du 05 avril 2017	-	other
Bulletin de sécurité Cisco cisco-sa-20170405-wlc du 05 avril 2017	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Points d\u0027acc\u00e8s Cisco Aironet s\u00e9ries 1830 et 1850 ex\u00e9cutant une version de Cisco Mobility Express ant\u00e9rieure \u00e0 8.2.111.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Wireless LAN Controller versions 8.3.x ant\u00e9rieures \u00e0 8.3.112.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Wireless LAN Controller versions ant\u00e9rieures \u00e0 8.2.141.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2017-3834",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-3834"
    },
    {
      "name": "CVE-2017-3832",
      "url": "https://www.cve.org/CVERecord?id=CVE-2017-3832"
    },
    {
      "name": "CVE-2016-9219",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9219"
    },
    {
      "name": "CVE-2016-9194",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-9194"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-wlc3 du 05    avril 2017",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc3"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-wlc2 du 05    avril 2017",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc2"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-ame du 05    avril 2017",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-ame"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-wlc du 05    avril 2017",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc"
    }
  ],
  "reference": "CERTFR-2017-AVI-103",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2017-04-06T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Ex\u00e9cution de code arbitraire \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eles produits Cisco\u003c/span\u003e. Elles permettent \u00e0 un\nattaquant de provoquer une ex\u00e9cution de code arbitraire \u00e0 distance, un\nd\u00e9ni de service \u00e0 distance et un contournement de la politique de\ns\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Cisco",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-wlc du 05 avril 2017",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-ame du 05 avril 2017",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-wlc3 du 05 avril 2017",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 Cisco cisco-sa-20170405-wlc2 du 05 avril 2017",
      "url": null
    }
  ]
}

GSD-2016-9194

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2016-9194

Aliases

CVE-2016-9194

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2016-9194",
    "description": "A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the 802.11 WME packet header. An attacker could exploit this vulnerability by sending malformed 802.11 WME frames to a targeted device. A successful exploit could allow the attacker to cause the WLC to reload unexpectedly. The fixed versions are 8.0.140.0, 8.2.130.0, and 8.3.111.0. Cisco Bug IDs: CSCva86353.",
    "id": "GSD-2016-9194"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2016-9194"
      ],
      "details": "A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the 802.11 WME packet header. An attacker could exploit this vulnerability by sending malformed 802.11 WME frames to a targeted device. A successful exploit could allow the attacker to cause the WLC to reload unexpectedly. The fixed versions are 8.0.140.0, 8.2.130.0, and 8.3.111.0. Cisco Bug IDs: CSCva86353.",
      "id": "GSD-2016-9194",
      "modified": "2023-12-13T01:21:22.042626Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2016-9194",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "Cisco Wireless LAN Controller",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "Cisco Wireless LAN Controller"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the 802.11 WME packet header. An attacker could exploit this vulnerability by sending malformed 802.11 WME frames to a targeted device. A successful exploit could allow the attacker to cause the WLC to reload unexpectedly. The fixed versions are 8.0.140.0, 8.2.130.0, and 8.3.111.0. Cisco Bug IDs: CSCva86353."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "CWE-399"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "97424",
            "refsource": "BID",
            "url": "http://www.securityfocus.com/bid/97424"
          },
          {
            "name": "1038182",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id/1038182"
          },
          {
            "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc",
            "refsource": "CONFIRM",
            "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.1.104.37:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:6.0_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:5.2.157.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.5.102.11:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.1.111.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:240.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.4:1.19:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:220.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:98.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.2:103.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:252.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.5.102.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_6.0:202.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.1.122.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.3.101.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.4.100:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.72.140:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.4_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.4.100.60:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.0.30220.385:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.6.1.62:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:116.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_6.0:182.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.1:91.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:98.218:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.5_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.120.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.3.103.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_6.0:196.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.6.110.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:5.2.169.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.4.121.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.1.130.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_6.0:188.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.4:1.54:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.4.110.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.115.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:250.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.4:140.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.4.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.100:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_6.0:199.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.6.120.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.121.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.3.112:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.6.130.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.3_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.2_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.6.100.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.0_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.1_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2016-9194"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the 802.11 WME packet header. An attacker could exploit this vulnerability by sending malformed 802.11 WME frames to a targeted device. A successful exploit could allow the attacker to cause the WLC to reload unexpectedly. The fixed versions are 8.0.140.0, 8.2.130.0, and 8.3.111.0. Cisco Bug IDs: CSCva86353."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-399"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc",
              "refsource": "CONFIRM",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc"
            },
            {
              "name": "97424",
              "refsource": "BID",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securityfocus.com/bid/97424"
            },
            {
              "name": "1038182",
              "refsource": "SECTRACK",
              "tags": [],
              "url": "http://www.securitytracker.com/id/1038182"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.1,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 6.5,
          "impactScore": 6.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          "exploitabilityScore": 2.8,
          "impactScore": 3.6
        }
      },
      "lastModifiedDate": "2017-07-12T01:29Z",
      "publishedDate": "2017-04-06T18:59Z"
    }
  }
}

VAR-201704-0486

Vulnerability from variot - Updated: 2023-12-18 13:34

A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the 802.11 WME packet header. An attacker could exploit this vulnerability by sending malformed 802.11 WME frames to a targeted device. A successful exploit could allow the attacker to cause the WLC to reload unexpectedly. The fixed versions are 8.0.140.0, 8.2.130.0, and 8.3.111.0. Cisco Bug IDs: CSCva86353. Vendors have confirmed this vulnerability Bug ID CSCva86353 It is released as.Service operation interruption (DoS) An attack may be carried out. Attackers can exploit this issue to reload the affected device, denying service to legitimate users. This product provides functions such as security policy and intrusion detection in wireless LAN

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201704-0486",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "7.4.100.60"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "7.4.110.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "7.1_base"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "7.0_base"
      },
      {
        "model": "wireless lan controller 7.4",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "1.54"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "8.0.121.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "8.0.0.30220.385"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "7.6.100.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "7.5_base"
      },
      {
        "model": "wireless lan controller 7.0",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "98.218"
      },
      {
        "model": "wireless lan controller 7.0",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "220.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.3.103.8"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "8.1.130.0"
      },
      {
        "model": "wireless lan controller 7.0",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "98.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.3.112"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "8.0.115.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.3.101.0"
      },
      {
        "model": "wireless lan controller 7.4",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "140.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "8.1.111.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.4_base"
      },
      {
        "model": "wireless lan controller 6.0",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "199.4"
      },
      {
        "model": "wireless lan controller 7.0",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "252.0"
      },
      {
        "model": "wireless lan controller 7.1",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "91.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "8.1.104.37"
      },
      {
        "model": "wireless lan controller 6.0",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "188.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.2_base"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "8.0.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "6.0_base"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "8.1.122.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.5.102.11"
      },
      {
        "model": "wireless lan controller 6.0",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "196.0"
      },
      {
        "model": "wireless lan controller 6.0",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "202.0"
      },
      {
        "model": "wireless lan controller 7.4",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "1.19"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "8.0.100"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.4.121.0"
      },
      {
        "model": "wireless lan controller 7.0",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "240.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.5.102.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.4.1.1"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.4.100"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.3_base"
      },
      {
        "model": "wireless lan controller 7.0",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "116.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "5.2.169.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "8.0.72.140"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.6.120.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.6.130.0"
      },
      {
        "model": "wireless lan controller 7.2",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "103.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.6.110.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "8.1.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.6.1.62"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "5.2.157.0"
      },
      {
        "model": "wireless lan controller 7.0",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "250.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "8.0.120.0"
      },
      {
        "model": "wireless lan controller 6.0",
        "scope": "eq",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "182.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": null,
        "trust": 0.8,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "wireless lan controller",
        "scope": null,
        "trust": 0.6,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.0.1994"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.0.182.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "5.2.1690"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "5.1.1600"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "5.1.1520"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "5.0.1482"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.2.1820"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.2.1740"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.2.1170"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.2.990"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.2.610"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.1.1850"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.1.1810"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.0.2190"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.0.2170"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.0.2060"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.0.196"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.0.1798"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.0.17911"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.0.108"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "8.3.111.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "8.3.102.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "8.3"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "8.2.130.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "8.0.132.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "8.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.6"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.5"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.4.1.54"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.4"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.3.101.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.3"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.2.110.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.2.103.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.1.91.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.0.98.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.0.235.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.0.220.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.0.199.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.0.196.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.0.188.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "6.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "5.2.157.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "5.2"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "5.1.151.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "5.1"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "5.0.148.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "5.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.2.176.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.2.173.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.2.130.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.2.112.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.2"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.1.171.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.1"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.0.155.5"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.0.155.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "4.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "3.2.116.21"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "3.2"
      },
      {
        "model": "wireless lan controller software",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "8.3.112.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "8.2.141.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "ne",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "8.0.140.0"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-04995"
      },
      {
        "db": "BID",
        "id": "97424"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-008277"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-9194"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201704-281"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.1.104.37:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:6.0_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:5.2.157.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.5.102.11:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.1.111.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:240.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.4:1.19:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:220.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:98.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.2:103.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.1.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:252.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.5.102.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_6.0:202.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.1.122.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.3.101.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.4.100:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.72.140:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.4_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.4.100.60:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.0.30220.385:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.6.1.62:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:116.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_6.0:182.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.1:91.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:98.218:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.5_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.120.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.3.103.8:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_6.0:196.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.6.110.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:5.2.169.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.4.121.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.1.130.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_6.0:188.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.4:1.54:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.4.110.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.115.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.0:250.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_7.4:140.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.4.1.1:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.100:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller_6.0:199.4:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.6.120.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:8.0.121.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.3.112:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.6.130.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.3_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.2_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.6.100.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.0_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:a:cisco:wireless_lan_controller:7.1_base:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2016-9194"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco",
    "sources": [
      {
        "db": "BID",
        "id": "97424"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2016-9194",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.1,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 6.5,
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "MEDIUM",
            "trust": 1.0,
            "userInteractionRequired": false,
            "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Adjacent Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Complete",
            "baseScore": 6.1,
            "confidentialityImpact": "None",
            "exploitabilityScore": null,
            "id": "CVE-2016-9194",
            "impactScore": null,
            "integrityImpact": "None",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "Medium",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.1,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 6.5,
            "id": "CNVD-2017-04995",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.6,
            "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.1,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 6.5,
            "id": "VHN-98014",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:A/AC:L/AU:N/C:N/I:N/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "ADJACENT_NETWORK",
            "author": "NVD",
            "availabilityImpact": "HIGH",
            "baseScore": 6.5,
            "baseSeverity": "MEDIUM",
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 2.8,
            "impactScore": 3.6,
            "integrityImpact": "NONE",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          },
          {
            "attackComplexity": "Low",
            "attackVector": "Adjacent Network",
            "author": "NVD",
            "availabilityImpact": "High",
            "baseScore": 6.5,
            "baseSeverity": "Medium",
            "confidentialityImpact": "None",
            "exploitabilityScore": null,
            "id": "CVE-2016-9194",
            "impactScore": null,
            "integrityImpact": "None",
            "privilegesRequired": "None",
            "scope": "Unchanged",
            "trust": 0.8,
            "userInteraction": "None",
            "vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2016-9194",
            "trust": 1.8,
            "value": "MEDIUM"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2017-04995",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201704-281",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-98014",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-04995"
      },
      {
        "db": "VULHUB",
        "id": "VHN-98014"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-008277"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-9194"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201704-281"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "A vulnerability in 802.11 Wireless Multimedia Extensions (WME) action frame processing in Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. The vulnerability is due to incomplete input validation of the 802.11 WME packet header. An attacker could exploit this vulnerability by sending malformed 802.11 WME frames to a targeted device. A successful exploit could allow the attacker to cause the WLC to reload unexpectedly. The fixed versions are 8.0.140.0, 8.2.130.0, and 8.3.111.0. Cisco Bug IDs: CSCva86353. Vendors have confirmed this vulnerability Bug ID CSCva86353 It is released as.Service operation interruption (DoS) An attack may be carried out. \nAttackers can exploit this issue to reload the affected device, denying service to legitimate users. This product provides functions such as security policy and intrusion detection in wireless LAN",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2016-9194"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-008277"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-04995"
      },
      {
        "db": "BID",
        "id": "97424"
      },
      {
        "db": "VULHUB",
        "id": "VHN-98014"
      }
    ],
    "trust": 2.52
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2016-9194",
        "trust": 3.4
      },
      {
        "db": "BID",
        "id": "97424",
        "trust": 2.0
      },
      {
        "db": "SECTRACK",
        "id": "1038182",
        "trust": 1.1
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-008277",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201704-281",
        "trust": 0.7
      },
      {
        "db": "CNVD",
        "id": "CNVD-2017-04995",
        "trust": 0.6
      },
      {
        "db": "NSFOCUS",
        "id": "36313",
        "trust": 0.6
      },
      {
        "db": "VULHUB",
        "id": "VHN-98014",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-04995"
      },
      {
        "db": "VULHUB",
        "id": "VHN-98014"
      },
      {
        "db": "BID",
        "id": "97424"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-008277"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-9194"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201704-281"
      }
    ]
  },
  "id": "VAR-201704-0486",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-04995"
      },
      {
        "db": "VULHUB",
        "id": "VHN-98014"
      }
    ],
    "trust": 1.2126263
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-04995"
      }
    ]
  },
  "last_update_date": "2023-12-18T13:34:18.149000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "cisco-sa-20170405-wlc",
        "trust": 0.8,
        "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20170405-wlc"
      },
      {
        "title": "Patch for Cisco WirelessLANController Denial of Service Vulnerability (CNVD-2017-04995)",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchinfo/show/92334"
      },
      {
        "title": "Cisco Wireless LAN Controller Remediation of resource management error vulnerabilities",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=73804"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-04995"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-008277"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201704-281"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-399",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-98014"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-008277"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-9194"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.6,
        "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20170405-wlc"
      },
      {
        "trust": 1.1,
        "url": "http://www.securityfocus.com/bid/97424"
      },
      {
        "trust": 1.1,
        "url": "http://www.securitytracker.com/id/1038182"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-9194"
      },
      {
        "trust": 0.8,
        "url": "https://nvd.nist.gov/vuln/detail/cve-2016-9194"
      },
      {
        "trust": 0.6,
        "url": "http://www.nsfocus.net/vulndb/36313"
      },
      {
        "trust": 0.3,
        "url": "http://www.cisco.com/"
      },
      {
        "trust": 0.3,
        "url": "http://www.cisco.com/en/us/products/ps6302/products_sub_category_home.html"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-04995"
      },
      {
        "db": "VULHUB",
        "id": "VHN-98014"
      },
      {
        "db": "BID",
        "id": "97424"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-008277"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-9194"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201704-281"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CNVD",
        "id": "CNVD-2017-04995"
      },
      {
        "db": "VULHUB",
        "id": "VHN-98014"
      },
      {
        "db": "BID",
        "id": "97424"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-008277"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-9194"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201704-281"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2017-04-21T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2017-04995"
      },
      {
        "date": "2017-04-06T00:00:00",
        "db": "VULHUB",
        "id": "VHN-98014"
      },
      {
        "date": "2017-04-05T00:00:00",
        "db": "BID",
        "id": "97424"
      },
      {
        "date": "2017-05-10T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2016-008277"
      },
      {
        "date": "2017-04-06T18:59:00.230000",
        "db": "NVD",
        "id": "CVE-2016-9194"
      },
      {
        "date": "2017-04-06T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201704-281"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2017-04-21T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2017-04995"
      },
      {
        "date": "2017-07-12T00:00:00",
        "db": "VULHUB",
        "id": "VHN-98014"
      },
      {
        "date": "2017-04-11T00:03:00",
        "db": "BID",
        "id": "97424"
      },
      {
        "date": "2017-05-10T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2016-008277"
      },
      {
        "date": "2017-07-12T01:29:03.097000",
        "db": "NVD",
        "id": "CVE-2016-9194"
      },
      {
        "date": "2017-08-31T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201704-281"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "network",
    "sources": [
      {
        "db": "BID",
        "id": "97424"
      }
    ],
    "trust": 0.3
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco Wireless LAN Controller Software management resource management vulnerability",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-008277"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "resource management error",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201704-281"
      }
    ],
    "trust": 0.6
  }
}

CNVD-2017-04995

Vulnerability from cnvd - Published: 2017-04-21

Title

Cisco Wireless LAN Controller拒绝服务漏洞（CNVD-2017-04995）

Description

Cisco Wireless LAN Controller是一款思科无线局域网控制器。 Cisco Wireless LAN Controller存在拒绝服务漏洞，允许攻击者利用漏洞发起拒绝服务攻击。

Severity

中

Patch Name

Cisco Wireless LAN Controller拒绝服务漏洞（CNVD-2017-04995）的补丁

Patch Description

Cisco Wireless LAN Controller是一款思科无线局域网控制器。 Cisco Wireless LAN Controller存在拒绝服务漏洞，允许攻击者利用漏洞发起拒绝服务攻击。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

目前厂商已经发布了升级补丁以修复此安全问题，补丁获取链接： https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc

Reference

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc

Impacted products

Name
Cisco Wireless LAN Controller

Show details on source website

JSON

To clipboard

{
  "bids": {
    "bid": {
      "bidNumber": "97424"
    }
  },
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-9194",
      "cveUrl": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2016-9194"
    }
  },
  "description": "Cisco Wireless LAN Controller\u662f\u4e00\u6b3e\u601d\u79d1\u65e0\u7ebf\u5c40\u57df\u7f51\u63a7\u5236\u5668\u3002\r\n\r\nCisco Wireless LAN Controller\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u53d1\u8d77\u62d2\u7edd\u670d\u52a1\u653b\u51fb\u3002",
  "discovererName": "Cisco",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2017-04995",
  "openTime": "2017-04-21",
  "patchDescription": "Cisco Wireless LAN Controller\u662f\u4e00\u6b3e\u601d\u79d1\u65e0\u7ebf\u5c40\u57df\u7f51\u63a7\u5236\u5668\u3002\r\n\r\nCisco Wireless LAN Controller\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u53d1\u8d77\u62d2\u7edd\u670d\u52a1\u653b\u51fb\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Wireless LAN Controller\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2017-04995\uff09\u7684\u8865\u4e01",
  "products": {
    "product": "Cisco Wireless LAN Controller"
  },
  "referenceLink": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170405-wlc",
  "serverity": "\u4e2d",
  "submitTime": "2017-04-06",
  "title": "Cisco Wireless LAN Controller\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2017-04995\uff09"
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2016-9194 (GCVE-0-2016-9194)

FKIE_CVE-2016-9194

GHSA-42RW-VPHV-R65G

CERTFR-2017-AVI-103

Solution

CERTFR-2017-AVI-103

Solution

GSD-2016-9194

VAR-201704-0486

CNVD-2017-04995

Tags

Sightings

Nomenclature