Vulnerabilities > Cisco > Wap361 Firmware > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-08-15 CVE-2018-0415 7PK - Errors vulnerability in Cisco products
A vulnerability in the implementation of Extensible Authentication Protocol over LAN (EAPOL) functionality in Cisco Small Business 100 Series Wireless Access Points and Cisco Small Business 300 Series Wireless Access Points could allow an authenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device.
low complexity
cisco CWE-388
6.8
2018-08-15 CVE-2018-0412 Unspecified vulnerability in Cisco products
A vulnerability in the implementation of Extensible Authentication Protocol over LAN (EAPOL) functionality in Cisco Small Business 100 Series Wireless Access Points and Cisco Small Business 300 Series Wireless Access Points could allow an unauthenticated, adjacent attacker to force the downgrade of the encryption algorithm that is used between an authenticator (access point) and a supplicant (Wi-Fi client).
high complexity
cisco
5.3
2018-01-18 CVE-2018-0098 Cross-site Scripting vulnerability in Cisco Wap150 Firmware and Wap361 Firmware
A vulnerability in the web-based management interface of Cisco WAP150 Wireless-AC/N Dual Radio Access Point with Power over Ethernet (PoE) and WAP361 Wireless-AC/N Dual Radio Wall Plate Access Point with PoE could allow an unauthenticated, remote attacker to conduct a cross-site scripting (XSS) attack against a user of the web-based management interface of an affected device.
network
low complexity
cisco CWE-79
6.1