CVE-2012-5991

screens/base/web_auth_custom.html on Cisco Wireless LAN Controller (WLC) devices with software 7.2.110.0 allows remote authenticated users to cause a denial of service (device reload) via a certain buttonClicked value in an internal webauth_type request, aka Bug ID CSCud50209.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.3 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:S/C:N/I:N/A:C
ciscoCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 89%
VendorProductVersion
ciscowireless_lan_controller_software
7.2.110.0
cisco2000_wireless_lan_controller
*
cisco2100_wireless_lan_controller
*
cisco2500_wireless_lan_controller
-
cisco4100_wireless_lan_controller
*
cisco4400_wireless_lan_controller
*
cisco5500_wireless_lan_controller
-
cisco7500_wireless_lan_controller
-
cisco8500_wireless_lan_controller
-
𝑥
= Vulnerable software versions
References
http://infosec42.blogspot.dk/2012/12/cisco-wlc-csrf-dos-and-persistent-xss.html
http://infosec42.blogspot.dk/2012/12/cisco-wlc-csrf-dos-and-persistent-xss.html