CVE-2007-5382

critical

Cisco

CVSS v3 Base Score

10.0

AV:N/AC:L/Au:N/C:C/I:C/A:C

EPSS Score

2.4%

Exploitation probability in 30 days

Top 15% most likely to be exploited

Attack Characteristics

Attack Vector

Network

Attack Complexity

Low

Confidentiality

Integrity

Availability

Published: October 12, 2007 (6789 days ago)

Last Modified: April 23, 2026

Vendor: Cisco

Source: NVD

Description

The conversion utility for converting CiscoWorks Wireless LAN Solution Engine (WLSE) 4.1.91.0 and earlier to Cisco Wireless Control System (WCS) creates administrator accounts with default usernames and passwords, which allows remote attackers to gain privileges.

CWE

CWE-264

Affected Products

cisco wireless lan solution enginecisco wireless control system

References

🔗 osvdb.org 🔗 www.cisco.com 🔗 www.securityfocus.com 🔗 www.securitytracker.com 🔗 www.vupen.com

CVE-2007-5382

Vulnerability Report

Description

CWE

Affected Products

References