How severe is CVE-2019-15276?

This vulnerability has a severity rating of HIGH with a CVSS score of 7.7 out of 10.

What type of vulnerability is CVE-2019-15276?

This is classified as CWE-20, which is a common weakness in software security.

CVE-2019-15276

HIGH Year: 2019

CVSS v3 Score

7.7

High

CVSS v2 Score

4.0

Medium

Weakness Type

CWE-20

View all →

Vulnerability Description

A vulnerability in the web interface of Cisco Wireless LAN Controller Software could allow a low-privileged, authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability exists due to a failure of the HTTP parsing engine to handle specially crafted URLs. An attacker could exploit this vulnerability by authenticating with low privileges to an affected controller and submitting the crafted URL to the web interface of the affected device. Conversely, an unauthenticated attacker could exploit this vulnerability by persuading a user of the web interface to click the crafted URL. A successful exploit could allow the attacker to cause an unexpected restart of the device, resulting in a DoS condition.

CVE-2016-8631

HIGH

CVSS:7.7(High)

The OpenShift Enterprise 3 router does not properly sort routes when processing newly added routes. An attacker with access to create routes can potentially overwrite existing routes and redirect netw...

CWE-202016

CVE-2018-0456

HIGH

CVSS:7.7(High)

A vulnerability in the Simple Network Management Protocol (SNMP) input packet processor of Cisco NX-OS Software could allow an authenticated, remote attacker to cause the SNMP application of an affect...

CWE-202018

CVE-2018-1000026

HIGH

CVSS:7.7(High)

Linux Linux kernel version at least v4.8 onwards, probably well before contains a Insufficient input validation vulnerability in bnx2x network card driver that can result in DoS: Network card firmware...

CWE-202018

CVE-2018-8218

HIGH

CVSS:7.7(High)

A denial of service vulnerability exists when Microsoft Hyper-V Network Switch on a host server fails to properly validate input from a privileged user on a guest operating system, aka "Windows Hyper-...

CWE-202018

CVE-2019-15966

HIGH

CVSS:7.7(High)

A vulnerability in the web application of Cisco TelePresence Advanced Media Gateway could allow an authenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. Th...

CWE-202019

CVE-2019-16027

HIGH

CVSS:7.7(High)

A vulnerability in the implementation of the Intermediate System–to–Intermediate System (IS–IS) routing protocol functionality in Cisco IOS XR Software could allow an authenticated, ...

CWE-202019

CVE-2019-15276

Vulnerability Description

Related Vulnerabilities

CVE-2016-8631

CVE-2018-0456

CVE-2018-1000026

CVE-2018-8218

CVE-2019-15966

CVE-2019-16027