Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
cisco embedded wireless controller vulnerabilities and exploits
(subscribe to this query)
4.7
CVSSv3
CVE-2023-20268
A vulnerability in the packet processing functionality of Cisco access point (AP) software could allow an unauthenticated, adjacent malicious user to exhaust resources on an affected device. This vulnerability is due to insufficient management of resources when handling certain t...
Cisco Wireless Lan Controller Software
Cisco Catalyst 9800 Embedded Wireless Controller Firmware
Cisco Business 150ax Firmware
Cisco Business 151axm Firmware
8.8
CVSSv3
CVE-2023-20231
A vulnerability in the web UI of Cisco IOS XE Software could allow an authenticated, remote malicious user to perform an injection attack against an affected device. This vulnerability is due to insufficient input validation. An attacker could exploit this vulnerability by sendin...
Cisco Ios Xe 16.12.4
Cisco Ios Xe 16.12.4a
Cisco Ios Xe 16.12.5
Cisco Ios Xe 16.12.5a
Cisco Ios Xe 16.12.5b
Cisco Ios Xe 16.12.6
Cisco Ios Xe 16.12.6a
Cisco Ios Xe 16.12.7
Cisco Ios Xe 16.12.8
Cisco Ios Xe 16.12.9
Cisco Ios Xe 17.2.2
Cisco Ios Xe 17.2.3
Cisco Ios Xe 17.3.1
Cisco Ios Xe 17.3.1a
Cisco Ios Xe 17.3.1w
Cisco Ios Xe 17.3.1x
Cisco Ios Xe 17.3.1z
Cisco Ios Xe 17.3.2
Cisco Ios Xe 17.3.3
Cisco Ios Xe 17.3.4
Cisco Ios Xe 17.3.4a
Cisco Ios Xe 17.3.4b
6.7
CVSSv3
CVE-2023-20097
A vulnerability in Cisco access points (AP) software could allow an authenticated, local malicious user to inject arbitrary commands and execute them with root privileges. This vulnerability is due to improper input validation of commands that are issued from a wireless controlle...
Cisco Wireless Lan Controller Software
Cisco Aironet Access Point Software
Cisco Ios Xe
6.5
CVSSv3
CVE-2023-20067
A vulnerability in the HTTP-based client profiling feature of Cisco IOS XE Software for Wireless LAN Controllers (WLCs) could allow an unauthenticated, adjacent malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insuffi...
Cisco Ios Xe 16.10.1
Cisco Ios Xe 16.12.1
Cisco Ios Xe 16.11.1
Cisco Ios Xe 17.1.1
Cisco Ios Xe 16.11.1a
Cisco Ios Xe 16.12.1t
Cisco Ios Xe 16.11.2
Cisco Ios Xe 16.12.1s
Cisco Ios Xe 16.11.1c
Cisco Ios Xe 16.11.1b
Cisco Ios Xe 16.10.1s
Cisco Ios Xe 16.10.1e
Cisco Ios Xe 16.12.4
Cisco Ios Xe 16.12.8
Cisco Ios Xe 16.12.3
Cisco Ios Xe 17.2.1
Cisco Ios Xe 17.4.1
Cisco Ios Xe 17.1.1s
Cisco Ios Xe 16.12.2t
Cisco Ios Xe 16.12.2s
Cisco Ios Xe 17.1.1t
Cisco Ios Xe 17.2.1a
6.8
CVSSv3
CVE-2023-20100
A vulnerability in the access point (AP) joining process of the Control and Provisioning of Wireless Access Points (CAPWAP) protocol of Cisco IOS XE Software for Wireless LAN Controllers (WLCs) could allow an unauthenticated, remote malicious user to cause a denial of service (Do...
Cisco Ios Xe 17.10.1
5.5
CVSSv3
CVE-2023-20056
A vulnerability in the management CLI of Cisco access point (AP) software could allow an authenticated, local malicious user to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation of commands supplied by the ...
Cisco Wireless Lan Controller Software
Cisco Aironet Access Point Software
Cisco Ios Xe
6.5
CVSSv3
CVE-2022-20810
A vulnerability in the Simple Network Management Protocol (SNMP) of Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family could allow an authenticated, remote malicious user to access sensitive information. This vulnerability is due to insufficient restrictions t...
Cisco Ios Xe -
7.5
CVSSv3
CVE-2022-20847
A vulnerability in the DHCP processing functionality of Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) condition. This vulnerability is due to the improper processing ...
Cisco Ios Xe 17.3.3
6.7
CVSSv3
CVE-2022-20855
A vulnerability in the self-healing functionality of Cisco IOS XE Software for Embedded Wireless Controllers on Catalyst Access Points could allow an authenticated, local malicious user to escape the restricted controller shell and execute arbitrary commands on the underlying ope...
Cisco Ios Xe 17.6.1
1 Github repository
7.5
CVSSv3
CVE-2022-20856
A vulnerability in the processing of Control and Provisioning of Wireless Access Points (CAPWAP) Mobility messages in Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family could allow an unauthenticated, remote malicious user to cause a denial of service (DoS) co...
Cisco Ios Xe 17.3.4c
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »