CVE-2010-0575 - Vulnerability Details

Vendors	Products
Cisco	Wireless Lan Controller Software

Link	Providers
http://tools.cisco.com/security/center/viewAlert.x?alertId=21291
http://www.cisco.com/en/US/products/products_security_advisory09186a0080b466e9.shtml

Show plain JSON

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "descriptions": [{"lang": "en", "value": "Cisco Wireless LAN Controller (WLC) software, possibly 6.0.x or possibly 4.1 through 6.0.x, allows remote attackers to bypass ACLs in the controller CPU, and consequently send network traffic to unintended segments or devices, via unspecified vectors, a different vulnerability than CVE-2010-3034."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2010-09-10T17:00:00Z", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"tags": ["x_refsource_CONFIRM"], "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=21291"}, {"name": "20100908 Multiple Vulnerabilities in Cisco Wireless LAN Controllers", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b466e9.shtml"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2010-0575", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "Cisco Wireless LAN Controller (WLC) software, possibly 6.0.x or possibly 4.1 through 6.0.x, allows remote attackers to bypass ACLs in the controller CPU, and consequently send network traffic to unintended segments or devices, via unspecified vectors, a different vulnerability than CVE-2010-3034."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "http://tools.cisco.com/security/center/viewAlert.x?alertId=21291", "refsource": "CONFIRM", "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=21291"}, {"name": "20100908 Multiple Vulnerabilities in Cisco Wireless LAN Controllers", "refsource": "CISCO", "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b466e9.shtml"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-07T00:52:19.447Z"}, "title": "CVE Program Container", "references": [{"tags": ["x_refsource_CONFIRM", "x_transferred"], "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=21291"}, {"name": "20100908 Multiple Vulnerabilities in Cisco Wireless LAN Controllers", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b466e9.shtml"}]}]}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2010-0575", "datePublished": "2010-09-10T17:00:00Z", "dateReserved": "2010-02-10T00:00:00Z", "dateUpdated": "2024-09-16T18:09:19.883Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{

containers : { »

cna : { »

affected : [ »

0 : { »

product : n/a (string)

vendor : n/a (string)

versions : [ »

0 : { »

status : affected (string)

version : n/a (string)

}

]

}

]

descriptions : [ »

0 : { »

lang : en (string)

value : Cisco Wireless LAN Controller (WLC) software, possibly 6.0.x or possibly 4.1 through 6.0.x, allows remote attackers to bypass ACLs in the controller CPU, and consequently send network traffic to unintended segments or devices, via unspecified vectors, a different vulnerability than CVE-2010-3034. (string)

}

]

problemTypes : [ »

0 : { »

descriptions : [ »

0 : { »

description : n/a (string)

lang : en (string)

type : text (string)

}

]

}

]

providerMetadata : { »

dateUpdated : 2010-09-10T17:00:00Z (string)

orgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

shortName : cisco (string)

}

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

]

url : http://tools.cisco.com/security/center/viewAlert.x?alertId=21291 (string)

}

1 : { »

name : 20100908 Multiple Vulnerabilities in Cisco Wireless LAN Controllers (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_CISCO (string)

]

url : http://www.cisco.com/en/US/products/products_security_advisory09186a0080b466e9.shtml (string)

}

]

x_legacyV4Record : { »

CVE_data_meta : { »

ASSIGNER : psirt@cisco.com (string)

ID : CVE-2010-0575 (string)

STATE : PUBLIC (string)

}

affects : { »

vendor : { »

vendor_data : [ »

0 : { »

product : { »

product_data : [ »

0 : { »

product_name : n/a (string)

version : { »

version_data : [ »

0 : { »

version_value : n/a (string)

}

]

}

]

}

vendor_name : n/a (string)

}

]

}

data_format : MITRE (string)

data_type : CVE (string)

data_version : 4.0 (string)

description : { »

description_data : [ »

0 : { »

lang : eng (string)

value : Cisco Wireless LAN Controller (WLC) software, possibly 6.0.x or possibly 4.1 through 6.0.x, allows remote attackers to bypass ACLs in the controller CPU, and consequently send network traffic to unintended segments or devices, via unspecified vectors, a different vulnerability than CVE-2010-3034. (string)

}

]

}

problemtype : { »

problemtype_data : [ »

0 : { »

description : [ »

0 : { »

lang : eng (string)

value : n/a (string)

}

]

}

]

}

references : { »

reference_data : [ »

0 : { »

name : http://tools.cisco.com/security/center/viewAlert.x?alertId=21291 (string)

refsource : CONFIRM (string)

url : http://tools.cisco.com/security/center/viewAlert.x?alertId=21291 (string)

}

1 : { »

name : 20100908 Multiple Vulnerabilities in Cisco Wireless LAN Controllers (string)

refsource : CISCO (string)

url : http://www.cisco.com/en/US/products/products_security_advisory09186a0080b466e9.shtml (string)

}

]

}

adp : [ »

0 : { »

providerMetadata : { »

orgId : af854a3a-2127-422b-91ae-364da2661108 (string)

shortName : CVE (string)

dateUpdated : 2024-08-07T00:52:19.447Z (string)

}

title : CVE Program Container (string)

references : [ »

0 : { »

tags : [ »

0 : x_refsource_CONFIRM (string)

1 : x_transferred (string)

]

url : http://tools.cisco.com/security/center/viewAlert.x?alertId=21291 (string)

}

1 : { »

name : 20100908 Multiple Vulnerabilities in Cisco Wireless LAN Controllers (string)

tags : [ »

0 : vendor-advisory (string)

1 : x_refsource_CISCO (string)

2 : x_transferred (string)

]

url : http://www.cisco.com/en/US/products/products_security_advisory09186a0080b466e9.shtml (string)

}

]

}

]

}

cveMetadata : { »

assignerOrgId : d1c1063e-7a18-46af-9102-31f8928bc633 (string)

assignerShortName : cisco (string)

cveId : CVE-2010-0575 (string)

datePublished : 2010-09-10T17:00:00Z (string)

dateReserved : 2010-02-10T00:00:00Z (string)

dateUpdated : 2024-09-16T18:09:19.883Z (string)

state : PUBLISHED (string)

}

dataType : CVE_RECORD (string)

dataVersion : 5.1 (string)

}

Show plain JSON

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:4.2:*:*:*:*:*:*:*", "matchCriteriaId": "DC1E1F40-ECB6-42FB-838E-998B1893D5CB", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.61.0:*:*:*:*:*:*:*", "matchCriteriaId": "9A15A3CA-69E7-451D-AB84-43A6BBF17A2B", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.99.0:*:*:*:*:*:*:*", "matchCriteriaId": "62424F6A-2D82-45C0-A7D3-540649DA5F5C", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.112.0:*:*:*:*:*:*:*", "matchCriteriaId": "8A17769C-A301-4BC9-A2B1-E442F78030C8", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.117.0:*:*:*:*:*:*:*", "matchCriteriaId": "F2290101-AEFA-4C4F-B8CE-620BDE6EA3F7", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.130.0:*:*:*:*:*:*:*", "matchCriteriaId": "0947448E-D8C5-423D-BDF3-36BD29A83ABE", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.173.0:*:*:*:*:*:*:*", "matchCriteriaId": "57C6B8CB-9277-463B-84EB-AEF36EE40E7B", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.174.0:*:*:*:*:*:*:*", "matchCriteriaId": "DDBD9C2D-514C-44D3-ADCD-D6F80E50BEF9", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.176.0:*:*:*:*:*:*:*", "matchCriteriaId": "7A97D98B-6B3C-4AD1-8096-202E44F63B72", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.182.0:*:*:*:*:*:*:*", "matchCriteriaId": "1C29D759-F433-42FB-ADA5-8FEA71085CC7", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:5.0.148.0:*:*:*:*:*:*:*", "matchCriteriaId": "1BAACE0C-DD44-4E81-ABEF-7896647CE8C8", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:5.0.148.2:*:*:*:*:*:*:*", "matchCriteriaId": "5140A4F1-713E-4478-B807-83D826DAA374", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:5.1:*:*:*:*:*:*:*", "matchCriteriaId": "68625A20-073A-4AC9-8C46-BCE07B185D8C", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:5.1.151.0:*:*:*:*:*:*:*", "matchCriteriaId": "2143731F-749D-45ED-B2FE-A3893C5B1F6B", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:5.1.152.0:*:*:*:*:*:*:*", "matchCriteriaId": "0C860DDD-33C6-4CC9-B8D2-4E3C9884C445", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:5.1.160.0:*:*:*:*:*:*:*", "matchCriteriaId": "A2230FF3-EE71-408A-B558-74AAD024F661", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:6.0:*:*:*:*:*:*:*", "matchCriteriaId": "593615BB-EDEC-4267-9D6A-B67E89BB0BD6", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:wireless_lan_controller_software:6.0.182.0:*:*:*:*:*:*:*", "matchCriteriaId": "F555475A-7ED8-45DD-93C5-BC3BFA07851B", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "Cisco Wireless LAN Controller (WLC) software, possibly 6.0.x or possibly 4.1 through 6.0.x, allows remote attackers to bypass ACLs in the controller CPU, and consequently send network traffic to unintended segments or devices, via unspecified vectors, a different vulnerability than CVE-2010-3034."}, {"lang": "es", "value": "El software Cisco Wireless LAN Controller (WLC), posiblemente V6.0.X o posiblemente v4.1 hasta v6.0.x, permite a atacantes remotos saltar las ACLs (listas de control de acceso) en el controlador de la CPU, y consecuentemente env\u00edar tr\u00e1fico de red a segmentos o dispositivos no deseados, a trav\u00e9s de vectores no especificados, una vulnerabilidad diferente de CVE-2010-3034."}], "id": "CVE-2010-0575", "lastModified": "2025-04-11T00:51:21.963", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "LOW", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 5.0, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:L/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 10.0, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2010-09-10T18:00:01.863", "references": [{"source": "psirt@cisco.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=21291"}, {"source": "psirt@cisco.com", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b466e9.shtml"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://tools.cisco.com/security/center/viewAlert.x?alertId=21291"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Patch", "Vendor Advisory"], "url": "http://www.cisco.com/en/US/products/products_security_advisory09186a0080b466e9.shtml"}], "sourceIdentifier": "psirt@cisco.com", "vulnStatus": "Deferred", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-264"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{

configurations : [ »

0 : { »

nodes : [ »

0 : { »

cpeMatch : [ »

0 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:4.2:*:*:*:*:*:*:* (string)

matchCriteriaId : DC1E1F40-ECB6-42FB-838E-998B1893D5CB (string)

vulnerable : true (boolean)

}

1 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.61.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 9A15A3CA-69E7-451D-AB84-43A6BBF17A2B (string)

vulnerable : true (boolean)

}

2 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.99.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 62424F6A-2D82-45C0-A7D3-540649DA5F5C (string)

vulnerable : true (boolean)

}

3 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.112.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 8A17769C-A301-4BC9-A2B1-E442F78030C8 (string)

vulnerable : true (boolean)

}

4 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.117.0:*:*:*:*:*:*:* (string)

matchCriteriaId : F2290101-AEFA-4C4F-B8CE-620BDE6EA3F7 (string)

vulnerable : true (boolean)

}

5 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.130.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 0947448E-D8C5-423D-BDF3-36BD29A83ABE (string)

vulnerable : true (boolean)

}

6 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.173.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 57C6B8CB-9277-463B-84EB-AEF36EE40E7B (string)

vulnerable : true (boolean)

}

7 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.174.0:*:*:*:*:*:*:* (string)

matchCriteriaId : DDBD9C2D-514C-44D3-ADCD-D6F80E50BEF9 (string)

vulnerable : true (boolean)

}

8 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.176.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 7A97D98B-6B3C-4AD1-8096-202E44F63B72 (string)

vulnerable : true (boolean)

}

9 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:4.2.182.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 1C29D759-F433-42FB-ADA5-8FEA71085CC7 (string)

vulnerable : true (boolean)

}

10 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:5.0.148.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 1BAACE0C-DD44-4E81-ABEF-7896647CE8C8 (string)

vulnerable : true (boolean)

}

11 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:5.0.148.2:*:*:*:*:*:*:* (string)

matchCriteriaId : 5140A4F1-713E-4478-B807-83D826DAA374 (string)

vulnerable : true (boolean)

}

12 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:5.1:*:*:*:*:*:*:* (string)

matchCriteriaId : 68625A20-073A-4AC9-8C46-BCE07B185D8C (string)

vulnerable : true (boolean)

}

13 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:5.1.151.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 2143731F-749D-45ED-B2FE-A3893C5B1F6B (string)

vulnerable : true (boolean)

}

14 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:5.1.152.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 0C860DDD-33C6-4CC9-B8D2-4E3C9884C445 (string)

vulnerable : true (boolean)

}

15 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:5.1.160.0:*:*:*:*:*:*:* (string)

matchCriteriaId : A2230FF3-EE71-408A-B558-74AAD024F661 (string)

vulnerable : true (boolean)

}

16 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:6.0:*:*:*:*:*:*:* (string)

matchCriteriaId : 593615BB-EDEC-4267-9D6A-B67E89BB0BD6 (string)

vulnerable : true (boolean)

}

17 : { »

criteria : cpe:2.3:o:cisco:wireless_lan_controller_software:6.0.182.0:*:*:*:*:*:*:* (string)

matchCriteriaId : F555475A-7ED8-45DD-93C5-BC3BFA07851B (string)

vulnerable : true (boolean)

}

]

negate : false (boolean)

operator : OR (string)

}

]

}

]

cveTags : [ *empty* ]

descriptions : [ »

0 : { »

lang : en (string)

value : Cisco Wireless LAN Controller (WLC) software, possibly 6.0.x or possibly 4.1 through 6.0.x, allows remote attackers to bypass ACLs in the controller CPU, and consequently send network traffic to unintended segments or devices, via unspecified vectors, a different vulnerability than CVE-2010-3034. (string)

}

1 : { »

lang : es (string)

value : El software Cisco Wireless LAN Controller (WLC), posiblemente V6.0.X o posiblemente v4.1 hasta v6.0.x, permite a atacantes remotos saltar las ACLs (listas de control de acceso) en el controlador de la CPU, y consecuentemente envíar tráfico de red a segmentos o dispositivos no deseados, a través de vectores no especificados, una vulnerabilidad diferente de CVE-2010-3034. (string)

}

]

id : CVE-2010-0575 (string)

lastModified : 2025-04-11T00:51:21.963 (string)

metrics : { »

cvssMetricV2 : [ »

0 : { »

acInsufInfo : false (boolean)

baseSeverity : MEDIUM (string)

cvssData : { »

accessComplexity : LOW (string)

accessVector : NETWORK (string)

authentication : NONE (string)

availabilityImpact : NONE (string)

baseScore : 5 (number)

confidentialityImpact : PARTIAL (string)

integrityImpact : NONE (string)

vectorString : AV:N/AC:L/Au:N/C:P/I:N/A:N (string)

version : 2.0 (string)

}

exploitabilityScore : 10 (number)

impactScore : 2.9 (number)

obtainAllPrivilege : false (boolean)

obtainOtherPrivilege : false (boolean)

obtainUserPrivilege : false (boolean)

source : nvd@nist.gov (string)

type : Primary (string)

userInteractionRequired : false (boolean)

}

]

}

published : 2010-09-10T18:00:01.863 (string)

references : [ »

0 : { »

source : psirt@cisco.com (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://tools.cisco.com/security/center/viewAlert.x?alertId=21291 (string)

}

1 : { »

source : psirt@cisco.com (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://www.cisco.com/en/US/products/products_security_advisory09186a0080b466e9.shtml (string)

}

2 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://tools.cisco.com/security/center/viewAlert.x?alertId=21291 (string)

}

3 : { »

source : af854a3a-2127-422b-91ae-364da2661108 (string)

tags : [ »

0 : Patch (string)

1 : Vendor Advisory (string)

]

url : http://www.cisco.com/en/US/products/products_security_advisory09186a0080b466e9.shtml (string)

}

]

sourceIdentifier : psirt@cisco.com (string)

vulnStatus : Deferred (string)

weaknesses : [ »

0 : { »

description : [ »

0 : { »

lang : en (string)

value : CWE-264 (string)

}

]

source : nvd@nist.gov (string)

type : Primary (string)

}

]

}

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

Metrics

Access Vector Network

Access Complexity Low

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object