cvelistv5 - cve-2015-0723

CVE-2015-0723 (GCVE-0-2015-0723)

Vulnerability from cvelistv5

Published

2015-05-16 14:00

Modified

2024-08-06 04:17

Severity ?

CWE

Summary

References

URL

	Vendor	Product	Version
	n/a	n/a	Version: n/a

cnvd-2015-03031

Vulnerability from cnvd

Title

Cisco Wireless LAN Controller存在未明拒绝服务漏洞

Description

Cisco Wireless LAN Controller用于使用轻量级接入点协议(LWAPP)管理Cisco Aironet接入点的应用设备。 Cisco Wireless LAN Controller处理某些值存在安全漏洞，允许攻击者利用漏洞提交特殊请求进行拒绝服务攻击，使设备重载。

Severity

中

Patch Name

Cisco Wireless LAN Controller存在未明拒绝服务漏洞的补丁

Patch Description

Cisco Wireless LAN Controller用于使用轻量级接入点协议(LWAPP)管理Cisco Aironet接入点的应用设备。 Cisco Wireless LAN Controller处理某些值存在安全漏洞，允许攻击者利用漏洞提交特殊请求进行拒绝服务攻击，使设备重载。目前，供应商发布了安全公告及相关补丁信息，修复了此漏洞。

Formal description

用户可参考如下厂商提供的安全公告获取补丁以修复该漏洞： http://tools.cisco.com/security/center/viewAlert.x?alertId=38749

Reference

http://tools.cisco.com/security/center/viewAlert.x?alertId=38749

Impacted products

Name
Cisco Wireless LAN Controller (WLC)

Show details on source website

JSON

To clipboard

{
  "cves": {
    "cve": {
      "cveNumber": "CVE-2015-0723"
    }
  },
  "description": "Cisco Wireless LAN Controller\u7528\u4e8e\u4f7f\u7528\u8f7b\u91cf\u7ea7\u63a5\u5165\u70b9\u534f\u8bae(LWAPP)\u7ba1\u7406Cisco Aironet\u63a5\u5165\u70b9\u7684\u5e94\u7528\u8bbe\u5907\u3002\r\n\r\nCisco Wireless LAN Controller\u5904\u7406\u67d0\u4e9b\u503c\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u63d0\u4ea4\u7279\u6b8a\u8bf7\u6c42\u8fdb\u884c\u62d2\u7edd\u670d\u52a1\u653b\u51fb\uff0c\u4f7f\u8bbe\u5907\u91cd\u8f7d\u3002",
  "discovererName": "Cisco",
  "formalWay": "\u7528\u6237\u53ef\u53c2\u8003\u5982\u4e0b\u5382\u5546\u63d0\u4f9b\u7684\u5b89\u5168\u516c\u544a\u83b7\u53d6\u8865\u4e01\u4ee5\u4fee\u590d\u8be5\u6f0f\u6d1e\uff1a\r\nhttp://tools.cisco.com/security/center/viewAlert.x?alertId=38749",
  "isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
  "number": "CNVD-2015-03031",
  "openTime": "2015-05-14",
  "patchDescription": "Cisco Wireless LAN Controller\u7528\u4e8e\u4f7f\u7528\u8f7b\u91cf\u7ea7\u63a5\u5165\u70b9\u534f\u8bae(LWAPP)\u7ba1\u7406Cisco Aironet\u63a5\u5165\u70b9\u7684\u5e94\u7528\u8bbe\u5907\u3002\r\n\r\nCisco Wireless LAN Controller\u5904\u7406\u67d0\u4e9b\u503c\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u5141\u8bb8\u653b\u51fb\u8005\u5229\u7528\u6f0f\u6d1e\u63d0\u4ea4\u7279\u6b8a\u8bf7\u6c42\u8fdb\u884c\u62d2\u7edd\u670d\u52a1\u653b\u51fb\uff0c\u4f7f\u8bbe\u5907\u91cd\u8f7d\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
  "patchName": "Cisco Wireless LAN Controller\u5b58\u5728\u672a\u660e\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e\u7684\u8865\u4e01",
  "products": {
    "product": "Cisco Wireless LAN Controller (WLC)"
  },
  "referenceLink": "http://tools.cisco.com/security/center/viewAlert.x?alertId=38749",
  "serverity": "\u4e2d",
  "submitTime": "2015-05-11",
  "title": "Cisco Wireless LAN Controller\u5b58\u5728\u672a\u660e\u62d2\u7edd\u670d\u52a1\u6f0f\u6d1e"
}

ghsa-q5cq-pgpp-cq8v

Vulnerability from github

Published

2022-05-17 03:07

Modified

2022-05-17 03:07

Details

Show details on source website

JSON

To clipboard

{
  "affected": [],
  "aliases": [
    "CVE-2015-0723"
  ],
  "database_specific": {
    "cwe_ids": [],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2015-05-16T14:59:00Z",
    "severity": "MODERATE"
  },
  "details": "The wireless web-authentication subsystem on Cisco Wireless LAN Controller (WLC) devices 7.5.x and 7.6.x before 7.6.120 allows remote attackers to cause a denial of service (process crash and device restart) via a crafted value, aka Bug ID CSCum03269.",
  "id": "GHSA-q5cq-pgpp-cq8v",
  "modified": "2022-05-17T03:07:53Z",
  "published": "2022-05-17T03:07:53Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2015-0723"
    },
    {
      "type": "WEB",
      "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=38749"
    },
    {
      "type": "WEB",
      "url": "http://www.securitytracker.com/id/1032277"
    }
  ],
  "schema_version": "1.4.0",
  "severity": []
}

fkie_cve-2015-0723

Vulnerability from fkie_nvd

Published

2015-05-16 14:59

Modified

2025-04-12 10:46

Severity ?

Summary

References

URL	Tags
psirt@cisco.com	http://tools.cisco.com/security/center/viewAlert.x?alertId=38749	Vendor Advisory
psirt@cisco.com	http://www.securitytracker.com/id/1032277	Third Party Advisory, VDB Entry
af854a3a-2127-422b-91ae-364da2661108	http://tools.cisco.com/security/center/viewAlert.x?alertId=38749	Vendor Advisory
af854a3a-2127-422b-91ae-364da2661108	http://www.securitytracker.com/id/1032277	Third Party Advisory, VDB Entry

Impacted products

Vendor	Product	Version
cisco	wireless_lan_controller_software	7.5.102.0
cisco	wireless_lan_controller_software	7.5.102.11
cisco	wireless_lan_controller_software	7.6.100.0

JSON

To clipboard

{
  "configurations": [
    {
      "nodes": [
        {
          "cpeMatch": [
            {
              "criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:7.5.102.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "AE2CAF56-E0D1-4056-A714-564D67D6A6AA",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:7.5.102.11:*:*:*:*:*:*:*",
              "matchCriteriaId": "98D6FFA2-E82A-4E2F-89F4-F4CFFF6870A8",
              "vulnerable": true
            },
            {
              "criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:7.6.100.0:*:*:*:*:*:*:*",
              "matchCriteriaId": "2CFFCE42-6068-49F7-A3F7-B3B76BD26AE6",
              "vulnerable": true
            }
          ],
          "negate": false,
          "operator": "OR"
        }
      ]
    }
  ],
  "cveTags": [],
  "descriptions": [
    {
      "lang": "en",
      "value": "The wireless web-authentication subsystem on Cisco Wireless LAN Controller (WLC) devices 7.5.x and 7.6.x before 7.6.120 allows remote attackers to cause a denial of service (process crash and device restart) via a crafted value, aka Bug ID CSCum03269."
    },
    {
      "lang": "es",
      "value": "El subsistema de la autenticaci\u00f3n web inal\u00e1mbrico en los dispositivos Cisco Wireless LAN Controller (WLC) 7.5.x y 7.6.x anterior a 7.6.120 permite a atacantes remotos causar una denegaci\u00f3n de servicio (ca\u00edda de proceso y reinicio de dispositivo) a trav\u00e9s de un valor manipulado, tambi\u00e9n conocido como Bug ID CSCum03269."
    }
  ],
  "id": "CVE-2015-0723",
  "lastModified": "2025-04-12T10:46:40.837",
  "metrics": {
    "cvssMetricV2": [
      {
        "acInsufInfo": false,
        "baseSeverity": "MEDIUM",
        "cvssData": {
          "accessComplexity": "LOW",
          "accessVector": "ADJACENT_NETWORK",
          "authentication": "NONE",
          "availabilityImpact": "COMPLETE",
          "baseScore": 6.1,
          "confidentialityImpact": "NONE",
          "integrityImpact": "NONE",
          "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
          "version": "2.0"
        },
        "exploitabilityScore": 6.5,
        "impactScore": 6.9,
        "obtainAllPrivilege": false,
        "obtainOtherPrivilege": false,
        "obtainUserPrivilege": false,
        "source": "nvd@nist.gov",
        "type": "Primary",
        "userInteractionRequired": false
      }
    ]
  },
  "published": "2015-05-16T14:59:01.203",
  "references": [
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=38749"
    },
    {
      "source": "psirt@cisco.com",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securitytracker.com/id/1032277"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Vendor Advisory"
      ],
      "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=38749"
    },
    {
      "source": "af854a3a-2127-422b-91ae-364da2661108",
      "tags": [
        "Third Party Advisory",
        "VDB Entry"
      ],
      "url": "http://www.securitytracker.com/id/1032277"
    }
  ],
  "sourceIdentifier": "psirt@cisco.com",
  "vulnStatus": "Deferred",
  "weaknesses": [
    {
      "description": [
        {
          "lang": "en",
          "value": "CWE-399"
        }
      ],
      "source": "nvd@nist.gov",
      "type": "Primary"
    }
  ]
}

gsd-2015-0723

Vulnerability from gsd

Modified

2023-12-13 01:19

Details

Aliases

CVE-2015-0723

Aliases

CVE-2015-0723

JSON

To clipboard

{
  "GSD": {
    "alias": "CVE-2015-0723",
    "description": "The wireless web-authentication subsystem on Cisco Wireless LAN Controller (WLC) devices 7.5.x and 7.6.x before 7.6.120 allows remote attackers to cause a denial of service (process crash and device restart) via a crafted value, aka Bug ID CSCum03269.",
    "id": "GSD-2015-0723"
  },
  "gsd": {
    "metadata": {
      "exploitCode": "unknown",
      "remediation": "unknown",
      "reportConfidence": "confirmed",
      "type": "vulnerability"
    },
    "osvSchema": {
      "aliases": [
        "CVE-2015-0723"
      ],
      "details": "The wireless web-authentication subsystem on Cisco Wireless LAN Controller (WLC) devices 7.5.x and 7.6.x before 7.6.120 allows remote attackers to cause a denial of service (process crash and device restart) via a crafted value, aka Bug ID CSCum03269.",
      "id": "GSD-2015-0723",
      "modified": "2023-12-13T01:19:58.897279Z",
      "schema_version": "1.4.0"
    }
  },
  "namespaces": {
    "cve.org": {
      "CVE_data_meta": {
        "ASSIGNER": "psirt@cisco.com",
        "ID": "CVE-2015-0723",
        "STATE": "PUBLIC"
      },
      "affects": {
        "vendor": {
          "vendor_data": [
            {
              "product": {
                "product_data": [
                  {
                    "product_name": "n/a",
                    "version": {
                      "version_data": [
                        {
                          "version_value": "n/a"
                        }
                      ]
                    }
                  }
                ]
              },
              "vendor_name": "n/a"
            }
          ]
        }
      },
      "data_format": "MITRE",
      "data_type": "CVE",
      "data_version": "4.0",
      "description": {
        "description_data": [
          {
            "lang": "eng",
            "value": "The wireless web-authentication subsystem on Cisco Wireless LAN Controller (WLC) devices 7.5.x and 7.6.x before 7.6.120 allows remote attackers to cause a denial of service (process crash and device restart) via a crafted value, aka Bug ID CSCum03269."
          }
        ]
      },
      "problemtype": {
        "problemtype_data": [
          {
            "description": [
              {
                "lang": "eng",
                "value": "n/a"
              }
            ]
          }
        ]
      },
      "references": {
        "reference_data": [
          {
            "name": "20150508 Cisco Wireless LAN Controller Wireless Web Authentication Denial of Service Vulnerability",
            "refsource": "CISCO",
            "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=38749"
          },
          {
            "name": "1032277",
            "refsource": "SECTRACK",
            "url": "http://www.securitytracker.com/id/1032277"
          }
        ]
      }
    },
    "nvd.nist.gov": {
      "configurations": {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "children": [],
            "cpe_match": [
              {
                "cpe23Uri": "cpe:2.3:o:cisco:wireless_lan_controller_software:7.5.102.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:wireless_lan_controller_software:7.5.102.11:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              },
              {
                "cpe23Uri": "cpe:2.3:o:cisco:wireless_lan_controller_software:7.6.100.0:*:*:*:*:*:*:*",
                "cpe_name": [],
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      },
      "cve": {
        "CVE_data_meta": {
          "ASSIGNER": "psirt@cisco.com",
          "ID": "CVE-2015-0723"
        },
        "data_format": "MITRE",
        "data_type": "CVE",
        "data_version": "4.0",
        "description": {
          "description_data": [
            {
              "lang": "en",
              "value": "The wireless web-authentication subsystem on Cisco Wireless LAN Controller (WLC) devices 7.5.x and 7.6.x before 7.6.120 allows remote attackers to cause a denial of service (process crash and device restart) via a crafted value, aka Bug ID CSCum03269."
            }
          ]
        },
        "problemtype": {
          "problemtype_data": [
            {
              "description": [
                {
                  "lang": "en",
                  "value": "CWE-399"
                }
              ]
            }
          ]
        },
        "references": {
          "reference_data": [
            {
              "name": "20150508 Cisco Wireless LAN Controller Wireless Web Authentication Denial of Service Vulnerability",
              "refsource": "CISCO",
              "tags": [
                "Vendor Advisory"
              ],
              "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=38749"
            },
            {
              "name": "1032277",
              "refsource": "SECTRACK",
              "tags": [
                "Third Party Advisory",
                "VDB Entry"
              ],
              "url": "http://www.securitytracker.com/id/1032277"
            }
          ]
        }
      },
      "impact": {
        "baseMetricV2": {
          "cvssV2": {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.1,
            "confidentialityImpact": "NONE",
            "integrityImpact": "NONE",
            "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          "exploitabilityScore": 6.5,
          "impactScore": 6.9,
          "obtainAllPrivilege": false,
          "obtainOtherPrivilege": false,
          "obtainUserPrivilege": false,
          "severity": "MEDIUM",
          "userInteractionRequired": false
        }
      },
      "lastModifiedDate": "2017-01-06T16:05Z",
      "publishedDate": "2015-05-16T14:59Z"
    }
  }
}

The wireless web-authentication subsystem on Cisco Wireless LAN Controller (WLC) devices 7.5.x and 7.6.x before 7.6.120 allows remote attackers to cause a denial of service (process crash and device restart) via a crafted value, aka Bug ID CSCum03269. The Cisco Wireless LAN Controller is used to manage Cisco Aironet access point applications using the Lightweight Access Point Protocol (LWAPP). Attackers can exploit this issue to crash and restart the affected device, denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCum03269. This product provides functions such as security policy and intrusion detection in wireless LAN

Show details on source website

JSON

To clipboard

{
  "@context": {
    "@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
    "affected_products": {
      "@id": "https://www.variotdbs.pl/ref/affected_products"
    },
    "configurations": {
      "@id": "https://www.variotdbs.pl/ref/configurations"
    },
    "credits": {
      "@id": "https://www.variotdbs.pl/ref/credits"
    },
    "cvss": {
      "@id": "https://www.variotdbs.pl/ref/cvss/"
    },
    "description": {
      "@id": "https://www.variotdbs.pl/ref/description/"
    },
    "exploit_availability": {
      "@id": "https://www.variotdbs.pl/ref/exploit_availability/"
    },
    "external_ids": {
      "@id": "https://www.variotdbs.pl/ref/external_ids/"
    },
    "iot": {
      "@id": "https://www.variotdbs.pl/ref/iot/"
    },
    "iot_taxonomy": {
      "@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
    },
    "patch": {
      "@id": "https://www.variotdbs.pl/ref/patch/"
    },
    "problemtype_data": {
      "@id": "https://www.variotdbs.pl/ref/problemtype_data/"
    },
    "references": {
      "@id": "https://www.variotdbs.pl/ref/references/"
    },
    "sources": {
      "@id": "https://www.variotdbs.pl/ref/sources/"
    },
    "sources_release_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_release_date/"
    },
    "sources_update_date": {
      "@id": "https://www.variotdbs.pl/ref/sources_update_date/"
    },
    "threat_type": {
      "@id": "https://www.variotdbs.pl/ref/threat_type/"
    },
    "title": {
      "@id": "https://www.variotdbs.pl/ref/title/"
    },
    "type": {
      "@id": "https://www.variotdbs.pl/ref/type/"
    }
  },
  "@id": "https://www.variotdbs.pl/vuln/VAR-201505-0170",
  "affected_products": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/affected_products#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "7.5.102.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "7.6.100.0"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 1.6,
        "vendor": "cisco",
        "version": "7.5.102.11"
      },
      {
        "model": "wireless lan controller software",
        "scope": "lt",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "7.6.x"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "7.5.x"
      },
      {
        "model": "wireless lan controller software",
        "scope": "eq",
        "trust": 0.8,
        "vendor": "cisco",
        "version": "7.6.120"
      },
      {
        "model": "wireless lan controller",
        "scope": null,
        "trust": 0.6,
        "vendor": "cisco",
        "version": null
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.6.100.0"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.5.102.11"
      },
      {
        "model": "wireless lan controller",
        "scope": "eq",
        "trust": 0.3,
        "vendor": "cisco",
        "version": "7.5.102.0"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2015-03031"
      },
      {
        "db": "BID",
        "id": "74571"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-002714"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201505-086"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-0723"
      }
    ]
  },
  "configurations": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/configurations#",
      "children": {
        "@container": "@list"
      },
      "cpe_match": {
        "@container": "@list"
      },
      "data": {
        "@container": "@list"
      },
      "nodes": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "CVE_data_version": "4.0",
        "nodes": [
          {
            "cpe_match": [
              {
                "cpe22Uri": "cpe:/o:cisco:wireless_lan_controller_software",
                "vulnerable": true
              }
            ],
            "operator": "OR"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-002714"
      }
    ]
  },
  "credits": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/credits#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco",
    "sources": [
      {
        "db": "BID",
        "id": "74571"
      }
    ],
    "trust": 0.3
  },
  "cve": "CVE-2015-0723",
  "cvss": {
    "@context": {
      "cvssV2": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
      },
      "cvssV3": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
      },
      "severity": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/cvss/severity#"
        },
        "@id": "https://www.variotdbs.pl/ref/cvss/severity"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        },
        "@id": "https://www.variotdbs.pl/ref/sources"
      }
    },
    "data": [
      {
        "cvssV2": [
          {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "author": "nvd@nist.gov",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.1,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 6.5,
            "id": "CVE-2015-0723",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 1.8,
            "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "author": "CNVD",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.1,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 6.5,
            "id": "CNVD-2015-03031",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.6,
            "vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
            "version": "2.0"
          },
          {
            "accessComplexity": "LOW",
            "accessVector": "ADJACENT_NETWORK",
            "authentication": "NONE",
            "author": "VULHUB",
            "availabilityImpact": "COMPLETE",
            "baseScore": 6.1,
            "confidentialityImpact": "NONE",
            "exploitabilityScore": 6.5,
            "id": "VHN-78669",
            "impactScore": 6.9,
            "integrityImpact": "NONE",
            "severity": "MEDIUM",
            "trust": 0.1,
            "vectorString": "AV:A/AC:L/AU:N/C:N/I:N/A:C",
            "version": "2.0"
          }
        ],
        "cvssV3": [],
        "severity": [
          {
            "author": "nvd@nist.gov",
            "id": "CVE-2015-0723",
            "trust": 1.0,
            "value": "MEDIUM"
          },
          {
            "author": "NVD",
            "id": "CVE-2015-0723",
            "trust": 0.8,
            "value": "Medium"
          },
          {
            "author": "CNVD",
            "id": "CNVD-2015-03031",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "CNNVD",
            "id": "CNNVD-201505-086",
            "trust": 0.6,
            "value": "MEDIUM"
          },
          {
            "author": "VULHUB",
            "id": "VHN-78669",
            "trust": 0.1,
            "value": "MEDIUM"
          }
        ]
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2015-03031"
      },
      {
        "db": "VULHUB",
        "id": "VHN-78669"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-002714"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201505-086"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-0723"
      }
    ]
  },
  "description": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/description#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "The wireless web-authentication subsystem on Cisco Wireless LAN Controller (WLC) devices 7.5.x and 7.6.x before 7.6.120 allows remote attackers to cause a denial of service (process crash and device restart) via a crafted value, aka Bug ID CSCum03269. The Cisco Wireless LAN Controller is used to manage Cisco Aironet access point applications using the Lightweight Access Point Protocol (LWAPP). \nAttackers can exploit this issue to crash and restart the affected device, denying service to legitimate users. \nThis issue is being tracked by Cisco Bug ID CSCum03269. This product provides functions such as security policy and intrusion detection in wireless LAN",
    "sources": [
      {
        "db": "NVD",
        "id": "CVE-2015-0723"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-002714"
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-03031"
      },
      {
        "db": "BID",
        "id": "74571"
      },
      {
        "db": "VULHUB",
        "id": "VHN-78669"
      }
    ],
    "trust": 2.52
  },
  "external_ids": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/external_ids#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "db": "NVD",
        "id": "CVE-2015-0723",
        "trust": 3.4
      },
      {
        "db": "SECTRACK",
        "id": "1032277",
        "trust": 1.1
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-002714",
        "trust": 0.8
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201505-086",
        "trust": 0.7
      },
      {
        "db": "CNVD",
        "id": "CNVD-2015-03031",
        "trust": 0.6
      },
      {
        "db": "SECUNIA",
        "id": "64475",
        "trust": 0.6
      },
      {
        "db": "BID",
        "id": "74571",
        "trust": 0.4
      },
      {
        "db": "VULHUB",
        "id": "VHN-78669",
        "trust": 0.1
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2015-03031"
      },
      {
        "db": "VULHUB",
        "id": "VHN-78669"
      },
      {
        "db": "BID",
        "id": "74571"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-002714"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201505-086"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-0723"
      }
    ]
  },
  "id": "VAR-201505-0170",
  "iot": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": true,
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2015-03031"
      },
      {
        "db": "VULHUB",
        "id": "VHN-78669"
      }
    ],
    "trust": 1.2343109399999999
  },
  "iot_taxonomy": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "category": [
          "Network device"
        ],
        "sub_category": null,
        "trust": 0.6
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2015-03031"
      }
    ]
  },
  "last_update_date": "2024-11-23T22:38:52.661000Z",
  "patch": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/patch#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "title": "38749",
        "trust": 0.8,
        "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=38749"
      },
      {
        "title": "Cisco Wireless LAN Controller has an unspecified denial of service vulnerability patch",
        "trust": 0.6,
        "url": "https://www.cnvd.org.cn/patchInfo/show/58370"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2015-03031"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-002714"
      }
    ]
  },
  "problemtype_data": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "problemtype": "CWE-399",
        "trust": 1.9
      }
    ],
    "sources": [
      {
        "db": "VULHUB",
        "id": "VHN-78669"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-002714"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-0723"
      }
    ]
  },
  "references": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/references#",
      "data": {
        "@container": "@list"
      },
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": [
      {
        "trust": 2.6,
        "url": "http://tools.cisco.com/security/center/viewalert.x?alertid=38749"
      },
      {
        "trust": 1.1,
        "url": "http://www.securitytracker.com/id/1032277"
      },
      {
        "trust": 0.8,
        "url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2015-0723"
      },
      {
        "trust": 0.8,
        "url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2015-0723"
      },
      {
        "trust": 0.6,
        "url": "http://secunia.com/advisories/64475"
      },
      {
        "trust": 0.3,
        "url": "http://www.cisco.com/"
      },
      {
        "trust": 0.3,
        "url": "http://www.cisco.com/en/us/products/ps6302/products_sub_category_home.html"
      }
    ],
    "sources": [
      {
        "db": "CNVD",
        "id": "CNVD-2015-03031"
      },
      {
        "db": "VULHUB",
        "id": "VHN-78669"
      },
      {
        "db": "BID",
        "id": "74571"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-002714"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201505-086"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-0723"
      }
    ]
  },
  "sources": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "db": "CNVD",
        "id": "CNVD-2015-03031"
      },
      {
        "db": "VULHUB",
        "id": "VHN-78669"
      },
      {
        "db": "BID",
        "id": "74571"
      },
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-002714"
      },
      {
        "db": "CNNVD",
        "id": "CNNVD-201505-086"
      },
      {
        "db": "NVD",
        "id": "CVE-2015-0723"
      }
    ]
  },
  "sources_release_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2015-05-14T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2015-03031"
      },
      {
        "date": "2015-05-16T00:00:00",
        "db": "VULHUB",
        "id": "VHN-78669"
      },
      {
        "date": "2015-05-08T00:00:00",
        "db": "BID",
        "id": "74571"
      },
      {
        "date": "2015-05-19T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2015-002714"
      },
      {
        "date": "2015-05-12T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201505-086"
      },
      {
        "date": "2015-05-16T14:59:01.203000",
        "db": "NVD",
        "id": "CVE-2015-0723"
      }
    ]
  },
  "sources_update_date": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
      "data": {
        "@container": "@list"
      }
    },
    "data": [
      {
        "date": "2015-05-14T00:00:00",
        "db": "CNVD",
        "id": "CNVD-2015-03031"
      },
      {
        "date": "2017-01-06T00:00:00",
        "db": "VULHUB",
        "id": "VHN-78669"
      },
      {
        "date": "2015-05-08T00:00:00",
        "db": "BID",
        "id": "74571"
      },
      {
        "date": "2015-05-19T00:00:00",
        "db": "JVNDB",
        "id": "JVNDB-2015-002714"
      },
      {
        "date": "2015-05-18T00:00:00",
        "db": "CNNVD",
        "id": "CNNVD-201505-086"
      },
      {
        "date": "2024-11-21T02:23:36.180000",
        "db": "NVD",
        "id": "CVE-2015-0723"
      }
    ]
  },
  "threat_type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/threat_type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "specific network environment",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201505-086"
      }
    ],
    "trust": 0.6
  },
  "title": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/title#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "Cisco Wireless LAN Controller Device wireless  web Service disruption in the authentication subsystem  (DoS) Vulnerabilities",
    "sources": [
      {
        "db": "JVNDB",
        "id": "JVNDB-2015-002714"
      }
    ],
    "trust": 0.8
  },
  "type": {
    "@context": {
      "@vocab": "https://www.variotdbs.pl/ref/type#",
      "sources": {
        "@container": "@list",
        "@context": {
          "@vocab": "https://www.variotdbs.pl/ref/sources#"
        }
      }
    },
    "data": "resource management error",
    "sources": [
      {
        "db": "CNNVD",
        "id": "CNNVD-201505-086"
      }
    ],
    "trust": 0.6
  }
}

Sightings

Author	Source	Type	Date

Nomenclature

Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
Confirmed: The vulnerability is confirmed from an analyst perspective.
Published Proof of Concept: A public proof of concept is available for this vulnerability.
Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
Patched: This vulnerability was successfully patched by the user reporting the sighting.
Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
Not confirmed: The user expresses doubt about the veracity of the vulnerability.
Not patched: This vulnerability was not successfully patched by the user reporting the sighting.

Action not permitted

CVE-2015-0723 (GCVE-0-2015-0723)

Vulnerability from cvelistv5

cnvd-2015-03031

Vulnerability from cnvd

ghsa-q5cq-pgpp-cq8v

Vulnerability from github

fkie_cve-2015-0723

Vulnerability from fkie_nvd

gsd-2015-0723

Vulnerability from gsd

var-201505-0170

Vulnerability from variot

Tags

Sightings

Nomenclature