CVE-2013-3474

CVE Database · CVE-2013-3474

CVE-2013-3474

· N/AModified

CVSS v3.1

N/A

EPSS

1.24%

Published

Aug 30, 2013

Modified

Apr 28, 2026

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

The Web Administrator Interface on Cisco Wireless LAN Controller (WLC) devices allows remote authenticated users to cause a denial of service (device crash) by leveraging membership in the Full Manager managers group, Read Only managers group, or Lobby Ambassador managers group, and sending a request that (1) lacks a parameter value or (2) contains a malformed parameter value, aka Bug IDs CSCuh14313, CSCuh14159, CSCuh14368, and CSCuh14436.

Weaknesses (CWE)

CWE-119

Affected Products (1)

cisco · wireless_lan_controllervulnerable

References (10)

http://osvdb.org/96763

http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-3474

Vendor Advisory

http://www.securityfocus.com/bid/62084

http://www.securitytracker.com/id/1028970

https://exchange.xforce.ibmcloud.com/vulnerabilities/86811