What is CVE-2018-0442?

CVE-2018-0442 is a high-severity vulnerability in Cisco Wireless Lan Controller (Wlc), classified under Information Disclosure. CVSS score: 7.5/10. Published 2018-10-17.

How severe is CVE-2018-0442?

High severity. CVSS v3 base score is 7.5 out of 10.

Information disclosure in Cisco Wireless Lan Controller (Wlc)

CVE-2018-0442

A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol component of Cisco Wireless LAN Controller (WLC) Software could allow an unauthenticated, remote attacker to retrieve memory contents, which could…

Vulnerability class: Information Disclosure

EPSS: 0.011 (78.5th percentile) — read the EPSS interpretation.

CVSS v3 metric

CVSS v3 base score 7.5 (High). Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N.

Affected products

Cisco Wireless Lan Controller (Wlc) — versions n/a

Weakness classification (CWE)

CWE-200 — Information Disclosure

References

1041923 (vdb-entry, x_refsource_SECTRACK)
105664 (vdb-entry, x_refsource_BID)
20181017 Cisco Wireless LAN Controller Software Control and Provisioning of Wireless Access Points Protocol Information Disclosure Vulnerability (x_refsource_CISCO, vendor-advisory)

Frequently asked questions

What is CVE-2018-0442?: CVE-2018-0442 is a high-severity vulnerability in Cisco Wireless Lan Controller (Wlc), classified under Information Disclosure. CVSS score: 7.5/10. Published 2018-10-17.
How severe is CVE-2018-0442?: High severity. CVSS v3 base score is 7.5 out of 10.