CVE-2016-1363

Published: Apr 21, 2016Modified: May 6, 2026

9.8

Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 3.9 / Impact: 5.9

Source: NVD

Description

Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7.4 before 7.4.140.0(MD) and 7.5 through 8.0 before 8.0.115.0(ED) allows remote attackers to execute arbitrary code via a crafted HTTP request, aka Bug ID CSCus25617.

Affected (2)

Products: Cisco: Wireless Lan Controller Software

1 product

Wireless Lan Controller Software

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Cisco Wireless Lan Controller Software	From 7.2.0 to 7.4.140.0
Cisco Wireless Lan Controller Software	From 7.5.0 to 8.0.115.0

Related CWEs

References (4)

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd

Source: psirt@cisco.com

Vendor Advisory

http://www.securitytracker.com/id/1035633

Source: psirt@cisco.com

Third Party AdvisoryVDB Entry

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160420-htrd

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

http://www.securitytracker.com/id/1035633

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

Timeline

No history available yet.