cvelistv5 - cve-2016-1363

CVE-2016-1363 (GCVE-0-2016-1363)

Vulnerability from cvelistv5 – Published: 2016-04-21 10:00 – Updated: 2024-08-05 22:55

Summary

Severity ?

No CVSS data available.

CWE

Assigner

cisco

References

URL

Tags

	http://www.securitytracker.com/id/1035633	vdb-entryx_refsource_SECTRACK
	http://tools.cisco.com/security/center/content/Ci…	vendor-advisoryx_refsource_CISCO

Show details on NVD website

JSON

To clipboard

{
  "containers": {
    "adp": [
      {
        "providerMetadata": {
          "dateUpdated": "2024-08-05T22:55:14.193Z",
          "orgId": "af854a3a-2127-422b-91ae-364da2661108",
          "shortName": "CVE"
        },
        "references": [
          {
            "name": "1035633",
            "tags": [
              "vdb-entry",
              "x_refsource_SECTRACK",
              "x_transferred"
            ],
            "url": "http://www.securitytracker.com/id/1035633"
          },
          {
            "name": "20160420 Cisco Wireless LAN Controller HTTP Parsing Denial of Service Vulnerability",
            "tags": [
              "vendor-advisory",
              "x_refsource_CISCO",
              "x_transferred"
            ],
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd"
          }
        ],
        "title": "CVE Program Container"
      }
    ],
    "cna": {
      "affected": [
        {
          "product": "n/a",
          "vendor": "n/a",
          "versions": [
            {
              "status": "affected",
              "version": "n/a"
            }
          ]
        }
      ],
      "datePublic": "2016-04-20T00:00:00",
      "descriptions": [
        {
          "lang": "en",
          "value": "Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617."
        }
      ],
      "problemTypes": [
        {
          "descriptions": [
            {
              "description": "n/a",
              "lang": "en",
              "type": "text"
            }
          ]
        }
      ],
      "providerMetadata": {
        "dateUpdated": "2016-11-30T18:57:01",
        "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
        "shortName": "cisco"
      },
      "references": [
        {
          "name": "1035633",
          "tags": [
            "vdb-entry",
            "x_refsource_SECTRACK"
          ],
          "url": "http://www.securitytracker.com/id/1035633"
        },
        {
          "name": "20160420 Cisco Wireless LAN Controller HTTP Parsing Denial of Service Vulnerability",
          "tags": [
            "vendor-advisory",
            "x_refsource_CISCO"
          ],
          "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd"
        }
      ],
      "x_legacyV4Record": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2016-1363",
          "STATE": "PUBLIC"
        },
        "affects": {
          "vendor": {
            "vendor_data": [
              {
                "product": {
                  "product_data": [
                    {
                      "product_name": "n/a",
                      "version": {
                        "version_data": [
                          {
                            "version_value": "n/a"
                          }
                        ]
                      }
                    }
                  ]
                },
                "vendor_name": "n/a"
              }
            ]
          }
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "eng",
              "value": "Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "eng",
                  "value": "n/a"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "1035633",
              "refsource": "SECTRACK",
              "url": "http://www.securitytracker.com/id/1035633"
            },
            {
              "name": "20160420 Cisco Wireless LAN Controller HTTP Parsing Denial of Service Vulnerability",
              "refsource": "CISCO",
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd"
            }
          ]
        }
      }
    }
  },
  "cveMetadata": {
    "assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633",
    "assignerShortName": "cisco",
    "cveId": "CVE-2016-1363",
    "datePublished": "2016-04-21T10:00:00",
    "dateReserved": "2016-01-04T00:00:00",
    "dateUpdated": "2024-08-05T22:55:14.193Z",
    "state": "PUBLISHED"
  },
  "dataType": "CVE_RECORD",
  "dataVersion": "5.1",
  "vulnerability-lookup:meta": {
    "fkie_nvd": {
      "configurations": "[{\"nodes\": [{\"operator\": \"OR\", \"negate\": false, \"cpeMatch\": [{\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"7.2.0\", \"versionEndExcluding\": \"7.4.140.0\", \"matchCriteriaId\": \"F1D8B34C-390B-4E09-8B30-6FA2CB72A83F\"}, {\"vulnerable\": true, \"criteria\": \"cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*\", \"versionStartIncluding\": \"7.5.0\", \"versionEndExcluding\": \"8.0.115.0\", \"matchCriteriaId\": \"C1FF28AF-4FED-4959-9F6A-724CDAE0381A\"}]}]}]",
      "descriptions": "[{\"lang\": \"en\", \"value\": \"Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617.\"}, {\"lang\": \"es\", \"value\": \"Desbordamiento de buffer en la funcionalidad de redirecci\\u00f3n en Cisco Wireless LAN Controller (WLC) Software 7.2 hasta la versi\\u00f3n 7.4 en versiones anteriores a 7.4.140.0(MD) y 7.5 hasta la versi\\u00f3n 8.0 en versiones anteriores a 8.0.115.0(ED) permite a atacantes remotos ejecutar c\\u00f3digo arbitrario a trav\\u00e9s de una petici\\u00f3n HTTP manipulada, tambi\\u00e9n conocida como Bug ID CSCus25617.\"}]",
      "id": "CVE-2016-1363",
      "lastModified": "2024-11-21T02:46:15.613",
      "metrics": "{\"cvssMetricV31\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"3.1\", \"vectorString\": \"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\", \"baseScore\": 9.8, \"baseSeverity\": \"CRITICAL\", \"attackVector\": \"NETWORK\", \"attackComplexity\": \"LOW\", \"privilegesRequired\": \"NONE\", \"userInteraction\": \"NONE\", \"scope\": \"UNCHANGED\", \"confidentialityImpact\": \"HIGH\", \"integrityImpact\": \"HIGH\", \"availabilityImpact\": \"HIGH\"}, \"exploitabilityScore\": 3.9, \"impactScore\": 5.9}], \"cvssMetricV2\": [{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"cvssData\": {\"version\": \"2.0\", \"vectorString\": \"AV:N/AC:L/Au:N/C:C/I:C/A:C\", \"baseScore\": 10.0, \"accessVector\": \"NETWORK\", \"accessComplexity\": \"LOW\", \"authentication\": \"NONE\", \"confidentialityImpact\": \"COMPLETE\", \"integrityImpact\": \"COMPLETE\", \"availabilityImpact\": \"COMPLETE\"}, \"baseSeverity\": \"HIGH\", \"exploitabilityScore\": 10.0, \"impactScore\": 10.0, \"acInsufInfo\": false, \"obtainAllPrivilege\": false, \"obtainUserPrivilege\": false, \"obtainOtherPrivilege\": false}]}",
      "published": "2016-04-21T11:00:01.587",
      "references": "[{\"url\": \"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd\", \"source\": \"ykramarz@cisco.com\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securitytracker.com/id/1035633\", \"source\": \"ykramarz@cisco.com\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}, {\"url\": \"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Vendor Advisory\"]}, {\"url\": \"http://www.securitytracker.com/id/1035633\", \"source\": \"af854a3a-2127-422b-91ae-364da2661108\", \"tags\": [\"Third Party Advisory\", \"VDB Entry\"]}]",
      "sourceIdentifier": "ykramarz@cisco.com",
      "vulnStatus": "Modified",
      "weaknesses": "[{\"source\": \"nvd@nist.gov\", \"type\": \"Primary\", \"description\": [{\"lang\": \"en\", \"value\": \"CWE-399\"}]}]"
    },
    "nvd": "{\"cve\":{\"id\":\"CVE-2016-1363\",\"sourceIdentifier\":\"psirt@cisco.com\",\"published\":\"2016-04-21T11:00:01.587\",\"lastModified\":\"2025-04-12T10:46:40.837\",\"vulnStatus\":\"Deferred\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617.\"},{\"lang\":\"es\",\"value\":\"Desbordamiento de buffer en la funcionalidad de redirecci\u00f3n en Cisco Wireless LAN Controller (WLC) Software 7.2 hasta la versi\u00f3n 7.4 en versiones anteriores a 7.4.140.0(MD) y 7.5 hasta la versi\u00f3n 8.0 en versiones anteriores a 8.0.115.0(ED) permite a atacantes remotos ejecutar c\u00f3digo arbitrario a trav\u00e9s de una petici\u00f3n HTTP manipulada, tambi\u00e9n conocida como Bug ID CSCus25617.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:C/I:C/A:C\",\"baseScore\":10.0,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"COMPLETE\",\"integrityImpact\":\"COMPLETE\",\"availabilityImpact\":\"COMPLETE\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":10.0,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-399\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"7.2.0\",\"versionEndExcluding\":\"7.4.140.0\",\"matchCriteriaId\":\"F1D8B34C-390B-4E09-8B30-6FA2CB72A83F\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"7.5.0\",\"versionEndExcluding\":\"8.0.115.0\",\"matchCriteriaId\":\"C1FF28AF-4FED-4959-9F6A-724CDAE0381A\"}]}]}],\"references\":[{\"url\":\"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securitytracker.com/id/1035633\",\"source\":\"psirt@cisco.com\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Vendor Advisory\"]},{\"url\":\"http://www.securitytracker.com/id/1035633\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]}]}}"
  }
}

CERTFR-2016-AVI-140

Vulnerability from certfr_avis - Published: - Updated:

De multiples vulnérabilités ont été corrigées dans les produits Cisco. Elles permettent à un attaquant de provoquer un déni de service à distance et un contournement de la politique de sécurité.

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Cisco	N/A	Cisco ASA Services Module pour Cisco Catalyst 6500 Series Switches et Cisco 7600 Series Routers versions 9.4 antérieures à 9.4.1
Cisco	N/A	Cisco WLC versions antérieures à 8.0.132.0
Cisco	N/A	Cisco Adaptive Security Virtual Appliance (ASAv) versions 9.4 antérieures à 9.4.1
Cisco	IOS XE	Cisco IOS XE versions 3.2.0 à 3.18.0S
Cisco	N/A	Cisco Unified Computing System Platform Emulator
Cisco	IOS	Cisco IOS versions 15.5(3)M01 et antérieures
Cisco	N/A	Cisco ASA 5500-X Series Next-Generation Firewalls versions 9.4 antérieures à 9.4.1
Cisco	N/A	Produits Cisco exécutant libSRTP versions antérieures à 1.5.3. Voir sur le site du constructeur pour une liste exhaustive (cf. section Documentation, avis de sécurité cisco-sa-20160420-libsrtp)

References

Title

Publication Time

Tags

Bulletin de sécurité les produits Cisco cisco-sa-20160420-bdos du 20 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160414-ucspe2 du 14 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160420-htrd du 20 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160420-libsrtp du 20 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160419-ios du 19 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160420-asa-dhcpv6 du 20 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160414-ucspe1 du 14 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160420-wlc du 20 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160420-bdos du 20 avril 2016	-	other
Bulletin de sécurité les produits Cisco cisco-sa-20160420-libsrtp du 20 avril 2016	-	other
Bulletin de sécurité les produits Cisco cisco-sa-20160420-asa-dhcpv6 du 20 avril 2016	-	other
Bulletin de sécurité les produits Cisco cisco-sa-20160420-wlc du 20 avril 2016	-	other
Bulletin de sécurité les produits Cisco cisco-sa-20160414-ucspe2 du 14 avril 2016	-	other
Bulletin de sécurité les produits Cisco cisco-sa-20160414-ucspe1 du 14 avril 2016	-	other
Bulletin de sécurité les produits Cisco cisco-sa-20160419-ios du 19 avril 2016	-	other
Bulletin de sécurité les produits Cisco cisco-sa-20160420-htrd du 20 avril 2016	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Cisco ASA Services Module pour Cisco Catalyst 6500 Series Switches et Cisco 7600 Series Routers versions 9.4 ant\u00e9rieures \u00e0 9.4.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco WLC versions ant\u00e9rieures \u00e0 8.0.132.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Adaptive Security Virtual Appliance (ASAv) versions 9.4 ant\u00e9rieures \u00e0 9.4.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco IOS XE versions 3.2.0 \u00e0 3.18.0S",
      "product": {
        "name": "IOS XE",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Unified Computing System Platform Emulator",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco IOS versions 15.5(3)M01 et ant\u00e9rieures",
      "product": {
        "name": "IOS",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco ASA 5500-X Series Next-Generation Firewalls versions 9.4 ant\u00e9rieures \u00e0 9.4.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Produits Cisco ex\u00e9cutant libSRTP versions ant\u00e9rieures \u00e0 1.5.3. Voir sur le site du constructeur pour une liste exhaustive (cf. section Documentation, avis de s\u00e9curit\u00e9 cisco-sa-20160420-libsrtp)",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-1384",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1384"
    },
    {
      "name": "CVE-2016-1364",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1364"
    },
    {
      "name": "CVE-2016-1362",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1362"
    },
    {
      "name": "CVE-2016-1340",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1340"
    },
    {
      "name": "CVE-2016-1339",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1339"
    },
    {
      "name": "CVE-2016-1367",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1367"
    },
    {
      "name": "CVE-2016-1363",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1363"
    },
    {
      "name": "CVE-2015-6360",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-6360"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160420-bdos du 20 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-bdos"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160420-libsrtp du 20 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-libsrtp"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160420-asa-dhcpv6 du 20 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-asa-dhcpv6"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160420-wlc du 20 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-wlc"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160414-ucspe2 du 14 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160414-ucspe2"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160414-ucspe1 du 14 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160414-ucspe1"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160419-ios du 19 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160419-ios"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160420-htrd du 20 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd"
    }
  ],
  "reference": "CERTFR-2016-AVI-140",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2016-04-21T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eles produits Cisco\u003c/span\u003e. Elles permettent \u00e0 un\nattaquant de provoquer un d\u00e9ni de service \u00e0 distance et un contournement\nde la politique de s\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Cisco",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160420-bdos du 20 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160414-ucspe2 du 14 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160420-htrd du 20 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160420-libsrtp du 20 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160419-ios du 19 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160420-asa-dhcpv6 du 20 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160414-ucspe1 du 14 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160420-wlc du 20 avril 2016",
      "url": null
    }
  ]
}

CERTFR-2016-AVI-140

Vulnerability from certfr_avis - Published: - Updated:

Solution

Se référer au bulletin de sécurité de l'éditeur pour l'obtention des correctifs (cf. section Documentation).

None

Impacted products

Vendor	Product	Description
Cisco	N/A	Cisco ASA Services Module pour Cisco Catalyst 6500 Series Switches et Cisco 7600 Series Routers versions 9.4 antérieures à 9.4.1
Cisco	N/A	Cisco WLC versions antérieures à 8.0.132.0
Cisco	N/A	Cisco Adaptive Security Virtual Appliance (ASAv) versions 9.4 antérieures à 9.4.1
Cisco	IOS XE	Cisco IOS XE versions 3.2.0 à 3.18.0S
Cisco	N/A	Cisco Unified Computing System Platform Emulator
Cisco	IOS	Cisco IOS versions 15.5(3)M01 et antérieures
Cisco	N/A	Cisco ASA 5500-X Series Next-Generation Firewalls versions 9.4 antérieures à 9.4.1
Cisco	N/A	Produits Cisco exécutant libSRTP versions antérieures à 1.5.3. Voir sur le site du constructeur pour une liste exhaustive (cf. section Documentation, avis de sécurité cisco-sa-20160420-libsrtp)

References

Title

Publication Time

Tags

Bulletin de sécurité les produits Cisco cisco-sa-20160420-bdos du 20 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160414-ucspe2 du 14 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160420-htrd du 20 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160420-libsrtp du 20 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160419-ios du 19 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160420-asa-dhcpv6 du 20 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160414-ucspe1 du 14 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160420-wlc du 20 avril 2016	None	vendor-advisory
Bulletin de sécurité les produits Cisco cisco-sa-20160420-bdos du 20 avril 2016	-	other
Bulletin de sécurité les produits Cisco cisco-sa-20160420-libsrtp du 20 avril 2016	-	other
Bulletin de sécurité les produits Cisco cisco-sa-20160420-asa-dhcpv6 du 20 avril 2016	-	other
Bulletin de sécurité les produits Cisco cisco-sa-20160420-wlc du 20 avril 2016	-	other
Bulletin de sécurité les produits Cisco cisco-sa-20160414-ucspe2 du 14 avril 2016	-	other
Bulletin de sécurité les produits Cisco cisco-sa-20160414-ucspe1 du 14 avril 2016	-	other
Bulletin de sécurité les produits Cisco cisco-sa-20160419-ios du 19 avril 2016	-	other
Bulletin de sécurité les produits Cisco cisco-sa-20160420-htrd du 20 avril 2016	-	other

Show details on source website

JSON

To clipboard

{
  "$ref": "https://www.cert.ssi.gouv.fr/openapi.json",
  "affected_systems": [
    {
      "description": "Cisco ASA Services Module pour Cisco Catalyst 6500 Series Switches et Cisco 7600 Series Routers versions 9.4 ant\u00e9rieures \u00e0 9.4.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco WLC versions ant\u00e9rieures \u00e0 8.0.132.0",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Adaptive Security Virtual Appliance (ASAv) versions 9.4 ant\u00e9rieures \u00e0 9.4.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco IOS XE versions 3.2.0 \u00e0 3.18.0S",
      "product": {
        "name": "IOS XE",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco Unified Computing System Platform Emulator",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco IOS versions 15.5(3)M01 et ant\u00e9rieures",
      "product": {
        "name": "IOS",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Cisco ASA 5500-X Series Next-Generation Firewalls versions 9.4 ant\u00e9rieures \u00e0 9.4.1",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    },
    {
      "description": "Produits Cisco ex\u00e9cutant libSRTP versions ant\u00e9rieures \u00e0 1.5.3. Voir sur le site du constructeur pour une liste exhaustive (cf. section Documentation, avis de s\u00e9curit\u00e9 cisco-sa-20160420-libsrtp)",
      "product": {
        "name": "N/A",
        "vendor": {
          "name": "Cisco",
          "scada": false
        }
      }
    }
  ],
  "affected_systems_content": null,
  "content": "## Solution\n\nSe r\u00e9f\u00e9rer au bulletin de s\u00e9curit\u00e9 de l\u0027\u00e9diteur pour l\u0027obtention des\ncorrectifs (cf. section Documentation).\n",
  "cves": [
    {
      "name": "CVE-2016-1384",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1384"
    },
    {
      "name": "CVE-2016-1364",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1364"
    },
    {
      "name": "CVE-2016-1362",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1362"
    },
    {
      "name": "CVE-2016-1340",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1340"
    },
    {
      "name": "CVE-2016-1339",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1339"
    },
    {
      "name": "CVE-2016-1367",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1367"
    },
    {
      "name": "CVE-2016-1363",
      "url": "https://www.cve.org/CVERecord?id=CVE-2016-1363"
    },
    {
      "name": "CVE-2015-6360",
      "url": "https://www.cve.org/CVERecord?id=CVE-2015-6360"
    }
  ],
  "links": [
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160420-bdos du 20 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-bdos"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160420-libsrtp du 20 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-libsrtp"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160420-asa-dhcpv6 du 20 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-asa-dhcpv6"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160420-wlc du 20 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-wlc"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160414-ucspe2 du 14 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160414-ucspe2"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160414-ucspe1 du 14 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160414-ucspe1"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160419-ios du 19 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160419-ios"
    },
    {
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco    cisco-sa-20160420-htrd du 20 avril 2016",
      "url": "https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd"
    }
  ],
  "reference": "CERTFR-2016-AVI-140",
  "revisions": [
    {
      "description": "version initiale.",
      "revision_date": "2016-04-21T00:00:00.000000"
    }
  ],
  "risks": [
    {
      "description": "D\u00e9ni de service \u00e0 distance"
    },
    {
      "description": "Contournement de la politique de s\u00e9curit\u00e9"
    }
  ],
  "summary": "De multiples vuln\u00e9rabilit\u00e9s ont \u00e9t\u00e9 corrig\u00e9es dans \u003cspan\nclass=\"textit\"\u003eles produits Cisco\u003c/span\u003e. Elles permettent \u00e0 un\nattaquant de provoquer un d\u00e9ni de service \u00e0 distance et un contournement\nde la politique de s\u00e9curit\u00e9.\n",
  "title": "Multiples vuln\u00e9rabilit\u00e9s dans les produits Cisco",
  "vendor_advisories": [
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160420-bdos du 20 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160414-ucspe2 du 14 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160420-htrd du 20 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160420-libsrtp du 20 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160419-ios du 19 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160420-asa-dhcpv6 du 20 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160414-ucspe1 du 14 avril 2016",
      "url": null
    },
    {
      "published_at": null,
      "title": "Bulletin de s\u00e9curit\u00e9 les produits Cisco cisco-sa-20160420-wlc du 20 avril 2016",
      "url": null
    }
  ]
}

VAR-201604-0560

Vulnerability from variot - Updated: 2023-12-18 13:53

Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617. The Cisco WLC is responsible for system-wide wireless LAN functions such as security policy, intrusion protection, RF management, quality of service, and mobility. An attacker can exploit this issue to execute arbitrary code on the affected device. Failed exploit attempts will result in denial-of-service conditions. This issue is being tracked by Cisco bug ID CSCus25617. The following releases are affected: Cisco WLC Release 7.2, Release 7.3, Release 7.4 prior to 7.4.140.0(MD), Release 7.5, Release 7.6, Release 8.0 prior to 8.0.115.0(ED)

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201604-0560",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "wireless lan controller software",
        "scope": "gte",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.2.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.4.140.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "gte",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "7.5.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "lt",
        "trust": 1.0,
        "vendor": "cisco",
        "version": "8.0.115.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "8.0.115.0(ed)"
      },
      {
        "model": "wireless lan controller software",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "7.4"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "all  7.5 release"
      },
      {
        "model": "wireless lan controller software",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "8.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "all  7.2 release"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "all  7.3 release"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "all  7.6 release"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "7.4.140.0(md)"
      },
      {
        "model": "wireless lan controller 8.0\u003c8.0.110.0",
        "scope": null,
        "trust": 0.6,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "7.6"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "7.5"
      },
      {
        "model": "wireless lan controller 7.4\u003c7.4.130.0",
        "scope": null,
        "trust": 0.6,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "7.3"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "7.2"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "7.5.102.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "7.4.100"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "8.0.72.140"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "7.4.1.19"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "7.4.1.54"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "8.1.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "7.4.100.60"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "7.6.1.62"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "7.5.102.11"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.6,
        "vendor": "cisco",
        "version": "7.4.1.1"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-02518"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-002340"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1363"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201604-512"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "7.4.140.0",
                "versionStartIncluding": "7.2.0",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "8.0.115.0",
                "versionStartIncluding": "7.5.0",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2016-1363"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco",
    "sources": [
      {
        "db": "BID",
        "id": "86761"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2016-1363",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "acInsufInfo": false,
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "NVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "obtainAllPrivilege": false,
            "obtainOtherPrivilege": false,
            "obtainUserPrivilege": false,
            "severity": "HIGH",
            "trust": 1.0,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "acInsufInfo": null,
            "accessComplexity": "Low",
            "accessVector": "Network",
            "authentication": "None",
            "author": "NVD",
            "availabilityImpact": "Complete",
            "baseScore": 10.0,
            "confidentialityImpact": "Complete",
            "exploitabilityScore": null,
            "id": "CVE-2016-1363",
            "impactScore": null,
            "integrityImpact": "Complete",
            "obtainAllPrivilege": null,
            "obtainOtherPrivilege": null,
            "obtainUserPrivilege": null,
            "severity": "High",
            "trust": 0.8,
            "userInteractionRequired": null,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "CNVD-2016-02518",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.6,
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "exploitabilityScore": 10.0,
            "id": "VHN-90182",
            "impactScore": 10.0,
            "integrityImpact": "COMPLETE",
            "severity": "HIGH",
            "trust": 0.1,
            "vectorString": "AV:N/AC:L/AU:N/C:C/I:C/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [
          {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "author": "NVD",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "exploitabilityScore": 3.9,
            "impactScore": 5.9,
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "trust": 1.0,
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          {
            "attackComplexity": "Low",
            "attackVector": "Network",
            "author": "NVD",
            "availabilityImpact": "High",
            "baseScore": 9.8,
            "baseSeverity": "Critical",
            "confidentialityImpact": "High",
            "exploitabilityScore": null,
            "id": "CVE-2016-1363",
            "impactScore": null,
            "integrityImpact": "High",
            "privilegesRequired": "None",
            "scope": "Unchanged",
            "trust": 0.8,
            "userInteraction": "None",
            "vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.0"
          }
        ],
        "severity": [
          {
            "author": "NVD",
            "id": "CVE-2016-1363",
            "trust": 1.8,
            "value": "CRITICAL"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2016-02518",
            "trust": 0.6,
            "value": "HIGH"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201604-512",
            "trust": 0.6,
            "value": "CRITICAL"
          },
          {
            "author": "VULHUB",
            "id": "VHN-90182",
            "trust": 0.1,
            "value": "HIGH"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-02518"
      },
      {
        "db": "VULHUB",
        "id": "VHN-90182"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-002340"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1363"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201604-512"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617. The Cisco WLC is responsible for system-wide wireless LAN functions such as security policy, intrusion protection, RF management, quality of service, and mobility. \nAn attacker can exploit this issue to execute arbitrary code on the affected device. Failed exploit attempts will result in denial-of-service conditions. \nThis issue is being tracked by Cisco bug ID CSCus25617. The following releases are affected: Cisco WLC Release 7.2, Release 7.3, Release 7.4 prior to 7.4.140.0(MD), Release 7.5, Release 7.6, Release 8.0 prior to 8.0.115.0(ED)",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2016-1363"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-002340"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2016-02518"
      },
      {
        "db": "BID",
        "id": "86761"
      },
      {
        "db": "VULHUB",
        "id": "VHN-90182"
      }
    ],
    "trust": 2.52
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2016-1363",
        "trust": 3.4
      },
      {
        "db": "SECTRACK",
        "id": "1035633",
        "trust": 1.7
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-002340",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201604-512",
        "trust": 0.7
      },
      {
        "db": "CNVD",
        "id": "CNVD-2016-02518",
        "trust": 0.6
      },
      {
        "db": "BID",
        "id": "86761",
        "trust": 0.4
      },
      {
        "db": "VULHUB",
        "id": "VHN-90182",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-02518"
      },
      {
        "db": "VULHUB",
        "id": "VHN-90182"
      },
      {
        "db": "BID",
        "id": "86761"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-002340"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1363"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201604-512"
      }
    ]
  },
  "id": "VAR-201604-0560",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-02518"
      },
      {
        "db": "VULHUB",
        "id": "VHN-90182"
      }
    ],
    "trust": 1.2126263
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-02518"
      }
    ]
  },
  "last_update_date": "2023-12-18T13:53:12.010000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "cisco-sa-20160420-htrd",
        "trust": 0.8,
        "url": "https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20160420-htrd"
      },
      {
        "title": "Patch for Cisco WirelessLANController Denial of Service Vulnerability (CNVD-2016-02518)",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchinfo/show/74743"
      },
      {
        "title": "Cisco Wireless LAN Controller redirection Fixes for feature buffer overflow vulnerabilities",
        "trust": 0.6,
        "url": "http://www.cnnvd.org.cn/web/xxk/bdxqbyid.tag?id=61201"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-02518"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-002340"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201604-512"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-399",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-90182"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-002340"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1363"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.3,
        "url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20160420-htrd"
      },
      {
        "trust": 1.7,
        "url": "http://www.securitytracker.com/id/1035633"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-1363"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-1363"
      },
      {
        "trust": 0.3,
        "url": "http://www.cisco.com/"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-02518"
      },
      {
        "db": "VULHUB",
        "id": "VHN-90182"
      },
      {
        "db": "BID",
        "id": "86761"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-002340"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1363"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201604-512"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CNVD",
        "id": "CNVD-2016-02518"
      },
      {
        "db": "VULHUB",
        "id": "VHN-90182"
      },
      {
        "db": "BID",
        "id": "86761"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-002340"
      },
      {
        "db": "NVD",
        "id": "CVE-2016-1363"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201604-512"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2016-04-26T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2016-02518"
      },
      {
        "date": "2016-04-21T00:00:00",
        "db": "VULHUB",
        "id": "VHN-90182"
      },
      {
        "date": "2016-04-20T00:00:00",
        "db": "BID",
        "id": "86761"
      },
      {
        "date": "2016-04-28T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2016-002340"
      },
      {
        "date": "2016-04-21T11:00:01.587000",
        "db": "NVD",
        "id": "CVE-2016-1363"
      },
      {
        "date": "2016-04-22T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201604-512"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2016-04-26T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2016-02518"
      },
      {
        "date": "2016-12-03T00:00:00",
        "db": "VULHUB",
        "id": "VHN-90182"
      },
      {
        "date": "2016-04-20T00:00:00",
        "db": "BID",
        "id": "86761"
      },
      {
        "date": "2016-04-28T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2016-002340"
      },
      {
        "date": "2021-04-26T19:07:22.707000",
        "db": "NVD",
        "id": "CVE-2016-1363"
      },
      {
        "date": "2021-04-19T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201604-512"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "remote",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201604-512"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco Wireless LAN Controller Software redirection buffer overflow vulnerability",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2016-002340"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "resource management error",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201604-512"
      }
    ],
    "trust": 0.6
  }
}

FKIE_CVE-2016-1363

Vulnerability from fkie_nvd - Published: 2016-04-21 11:00 - Updated: 2025-04-12 10:46

Severity ?

9.8 (Critical) - CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Summary

References

URL	Tags
psirt@cisco.com	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd	Vendor Advisory
psirt@cisco.com	http://www.securitytracker.com/id/1035633	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1035633	Third Party Advisory, VDB Entry

Impacted products

	Vendor	Product	Version
	cisco	wireless_lan_controller_software	*
	cisco	wireless_lan_controller_software	*

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "F1D8B34C-390B-4E09-8B30-6FA2CB72A83F",
              "versionEndExcluding": "7.4.140.0",
              "versionStartIncluding": "7.2.0",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*",
              "matchCriteriaId": "C1FF28AF-4FED-4959-9F6A-724CDAE0381A",
              "versionEndExcluding": "8.0.115.0",
              "versionStartIncluding": "7.5.0",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617."
    },
    {
      "lang": "es",
      "value": "Desbordamiento de buffer en la funcionalidad de redirecci\u00f3n en Cisco Wireless LAN Controller (WLC) Software 7.2 hasta la versi\u00f3n 7.4 en versiones anteriores a 7.4.140.0(MD) y 7.5 hasta la versi\u00f3n 8.0 en versiones anteriores a 8.0.115.0(ED) permite a atacantes remotos ejecutar c\u00f3digo arbitrario a trav\u00e9s de una petici\u00f3n HTTP manipulada, tambi\u00e9n conocida como Bug ID CSCus25617."
    }
  ],
  "id": "CVE-2016-1363",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "HIGH",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 10.0,
          "confidentialityImpact": "COMPLETE",
          "integrityImpact": "COMPLETE",
          "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 10.0,
        "impactScore": 10.0,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ],
    "cvssMetricV31": [
      {
        "cvssData": {
          "attackComplexity": "LOW",
          "attackVector": "NETWORK",
          "availabilityImpact": "HIGH",
          "baseScore": 9.8,
          "baseSeverity": "CRITICAL",
          "confidentialityImpact": "HIGH",
          "integrityImpact": "HIGH",
          "privilegesRequired": "NONE",
          "scope": "UNCHANGED",
          "userInteraction": "NONE",
          "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
          "version": "3.1"
        },
        "exploitabilityScore": 3.9,
        "impactScore": 5.9,
        "source": "nvd@nist.gov",
        "type": "Primary"
      }
    ]
  },
  "published": "2016-04-21T11:00:01.587",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd"
    },
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securitytracker.com/id/1035633"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securitytracker.com/id/1035633"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-399"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

GHSA-49CG-6FC4-5QHM

Vulnerability from github – Published: 2022-05-13 01:10 – Updated: 2022-05-13 01:10

Details

Severity ?

9.8 (Critical)


                  
                    CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2016-1363"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2016-04-21T11:00:00Z",
    "severity": "CRITICAL"
  },
  "details": "Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617.",
  "id": "GHSA-49cg-6fc4-5qhm",
  "modified": "2022-05-13T01:10:30Z",
  "published": "2022-05-13T01:10:29Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2016-1363"
    },
    {
      "type": "WEB",
      "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id/1035633"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
      "type": "CVSS_V3"
    }
  ]
}

CNVD-2016-02518

Vulnerability from cnvd - Published: 2016-04-26

Title

Cisco Wireless LAN Controller拒绝服务漏洞（CNVD-2016-02518）

Description

Cisco WLC 负责全系统的无线LAN功能，例如安全策略、入侵保护、RF管理，服务质量和移动性。 Cisco Wireless LAN Controller (WLC) Software的HTTP URL重定向功能存在拒绝服务漏洞，允许远程攻击者未经身份验证，发送构造的HTTP请求到受影响软件，造成受影响设备重载，导致拒绝服务。

Severity

高

Patch Name

Cisco Wireless LAN Controller拒绝服务漏洞（CNVD-2016-02518）的补丁

Patch Description

Formal description

目前厂商已经发布了升级补丁以修复此安全问题，补丁获取链接： http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd

Reference

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd

Impacted products

Name
['Cisco Wireless LAN Controller (WLC) 8.0<8.0.110.0(ED)', 'Cisco Wireless LAN Controller (WLC) 7.6', 'Cisco Wireless LAN Controller (WLC) 7.5', 'Cisco Wireless LAN Controller (WLC) 7.4<7.4.130.0(MD)', 'Cisco Wireless LAN Controller (WLC) 7.3', 'Cisco Wireless LAN Controller (WLC) 7.2']

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2016-1363"
    }
  },
  "description": "Cisco WLC \u8d1f\u8d23\u5168\u7cfb\u7edf\u7684\u65e0\u7ebfLAN\u529f\u80fd\uff0c\u4f8b\u5982\u5b89\u5168\u7b56\u7565\u3001\u5165\u4fb5\u4fdd\u62a4\u3001RF\u7ba1\u7406\uff0c\u670d\u52a1\u8d28\u91cf\u548c\u79fb\u52a8\u6027\u3002\r\n\r\nCisco Wireless LAN Controller (WLC) Software\u7684HTTP URL\u91cd\u5b9a\u5411\u529f\u80fd\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u5141\u8bb8\u8fdc\u7a0b\u653b\u51fb\u8005\u672a\u7ecf\u8eab\u4efd\u9a8c\u8bc1\uff0c\u53d1\u9001\u6784\u9020\u7684HTTP\u8bf7\u6c42\u5230\u53d7\u5f71\u54cd\u8f6f\u4ef6\uff0c\u9020\u6210\u53d7\u5f71\u54cd\u8bbe\u5907\u91cd\u8f7d\uff0c\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002",
  "discovererName": "Cisco",
  "formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u7ecf\u53d1\u5e03\u4e86\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6b64\u5b89\u5168\u95ee\u9898\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a \r\nhttp://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2016-02518",
  "openTime": "2016-04-26",
  "patchDescription": "Cisco WLC \u8d1f\u8d23\u5168\u7cfb\u7edf\u7684\u65e0\u7ebfLAN\u529f\u80fd\uff0c\u4f8b\u5982\u5b89\u5168\u7b56\u7565\u3001\u5165\u4fb5\u4fdd\u62a4\u3001RF\u7ba1\u7406\uff0c\u670d\u52a1\u8d28\u91cf\u548c\u79fb\u52a8\u6027\u3002\r\n\r\nCisco Wireless LAN Controller (WLC) Software\u7684HTTP URL\u91cd\u5b9a\u5411\u529f\u80fd\u5b58\u5728\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff0c\u5141\u8bb8\u8fdc\u7a0b\u653b\u51fb\u8005\u672a\u7ecf\u8eab\u4efd\u9a8c\u8bc1\uff0c\u53d1\u9001\u6784\u9020\u7684HTTP\u8bf7\u6c42\u5230\u53d7\u5f71\u54cd\u8f6f\u4ef6\uff0c\u9020\u6210\u53d7\u5f71\u54cd\u8bbe\u5907\u91cd\u8f7d\uff0c\u5bfc\u81f4\u62d2\u7edd\u670d\u52a1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Wireless LAN Controller\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2016-02518\uff09\u7684\u8865\u4e01",
  "products": {
    "product": [
      "Cisco Wireless LAN Controller (WLC) 8.0\u003c8.0.110.0(ED)",
      "Cisco Wireless LAN Controller (WLC)  7.6",
      "Cisco Wireless LAN Controller (WLC)  7.5",
      "Cisco Wireless LAN Controller (WLC)  7.4\u003c7.4.130.0(MD)",
      "Cisco Wireless LAN Controller (WLC) 7.3",
      "Cisco Wireless LAN Controller (WLC)  7.2"
    ]
  },
  "referenceLink": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd",
  "serverity": "\u9ad8",
  "submitTime": "2016-04-21",
  "title": "Cisco Wireless LAN Controller\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\uff08CNVD-2016-02518\uff09"
}

GSD-2016-1363

Vulnerability from gsd - Updated: 2023-12-13 01:21

Details

Aliases

CVE-2016-1363

Aliases

CVE-2016-1363

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2016-1363",
    "description": "Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617.",
    "id": "GSD-2016-1363"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2016-1363"
      ],
      "details": "Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617.",
      "id": "GSD-2016-1363",
      "modified": "2023-12-13T01:21:24.886444Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2016-1363",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "1035633",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id/1035633"
          },
          {
            "name": "20160420 Cisco Wireless LAN Controller HTTP Parsing Denial of Service Vulnerability",
            "refsource": "CISCO",
            "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "7.4.140.0",
                "versionStartIncluding": "7.2.0",
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*",
                "cpe_name": [],
                "versionEndExcluding": "8.0.115.0",
                "versionStartIncluding": "7.5.0",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2016-1363"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-399"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20160420 Cisco Wireless LAN Controller HTTP Parsing Denial of Service Vulnerability",
              "refsource": "CISCO",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd"
            },
            {
              "name": "1035633",
              "refsource": "SECTRACK",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securitytracker.com/id/1035633"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 10.0,
            "confidentialityImpact": "COMPLETE",
            "integrityImpact": "COMPLETE",
            "vectorString": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 10.0,
          "impactScore": 10.0,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "HIGH"
        },
        "baseMetricV3": {
          "cvssV3": {
            "attackComplexity": "LOW",
            "attackVector": "NETWORK",
            "availabilityImpact": "HIGH",
            "baseScore": 9.8,
            "baseSeverity": "CRITICAL",
            "confidentialityImpact": "HIGH",
            "integrityImpact": "HIGH",
            "privilegesRequired": "NONE",
            "scope": "UNCHANGED",
            "userInteraction": "NONE",
            "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
            "version": "3.1"
          },
          "exploitabilityScore": 3.9,
          "impactScore": 5.9
        }
      },
      "lastModifiedDate": "2021-04-26T19:07Z",
      "publishedDate": "2016-04-21T11:00Z"
    }
  }
}

Tags

Taxonomy of the tags.

All sightings related to this event Export sightings related to this event

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or observed by the user.
Confirmed: The vulnerability has been validated from an analyst's perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
Not confirmed: The user expressed doubt about the validity of the vulnerability.
Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.

Detection rules are retrieved from Rulezet.

Action not permitted

CVE-2016-1363 (GCVE-0-2016-1363)

CERTFR-2016-AVI-140

Solution

CERTFR-2016-AVI-140

Solution

VAR-201604-0560

FKIE_CVE-2016-1363

GHSA-49CG-6FC4-5QHM

CNVD-2016-02518

GSD-2016-1363

Tags

Sightings

Nomenclature