Vulnerability Details : CVE-2009-2976
Cisco Aironet Lightweight Access Point (AP) devices send the contents of certain multicast data frames in cleartext, which allows remote attackers to discover Wireless LAN Controller MAC addresses and IP addresses, and AP configuration details, by sniffing the wireless network.
Exploit prediction scoring system (EPSS) score for CVE-2009-2976
Probability of exploitation activity in the next 30 days: 0.13%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 47 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2009-2976
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
---|---|---|---|---|---|
7.8
|
HIGH | AV:N/AC:L/Au:N/C:C/I:N/A:N |
10.0
|
6.9
|
NIST |
CWE ids for CVE-2009-2976
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2009-2976
Products affected by CVE-2009-2976
- cpe:2.3:h:cisco:aironet_ap1200:*:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:aironet_ap1100:*:*:*:*:*:*:*:*