HIGH✓ PATCH🇬🇧 English

CVE-2014-0703

CVSS 10.0v2.0pub. 2014-03-06upd. 2026-05-06

Cisco Wireless LAN Controller (WLC) devices 7.4 before 7.4.110.0 distribute Aironet IOS software with a race condition in the status of the administrative HTTP server, which allows remote attackers to bypass intended access restrictions by connecting to an Aironet access point on which this server had been disabled ineffectively, aka Bug ID CSCuf66202.

oryginał EN
CVSS Vector
AV:N/AC:L/Au:N/C:C/I:C/A:C
  • Cisco Wireless Lan Controller

    HW
    Cisco
    wszystkie wersje
  • Cisco Wireless Lan Controller Software

    OS
    Cisco
    7.4.100.07.4.100.60
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
Race Condition
CWE
Referencje

Powiązane podatności

CVE-2016-1363CRITICAL9.8ten sam produkt

Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7...

CVE-2015-6314CRITICAL9.8ten sam produkt

Cisco Wireless LAN Controller (WLC) devices with software 7.6.x, 8.0 before 8.0.121.0, and 8.1 before 8.1.131....

CVE-2024-20271HIGH8.6ten sam produkt

A vulnerability in the IP packet processing of Cisco Access Point (AP) Software could allow an unauthenticated...

CVE-2022-20769HIGH7.4ten sam produkt

A vulnerability in the authentication functionality of Cisco Wireless LAN Controller (WLC) AireOS Software cou...

CVE-2021-1419HIGH7.8ten sam produkt

A vulnerability in the SSH management feature of multiple Cisco Access Points (APs) platforms could allow a lo...