CVE-2007-5382

critical

Description

The conversion utility for converting CiscoWorks Wireless LAN Solution Engine (WLSE) 4.1.91.0 and earlier to Cisco Wireless Control System (WCS) creates administrator accounts with default usernames and passwords, which allows remote attackers to gain privileges.

References

https://exchange.xforce.ibmcloud.com/vulnerabilities/37053

http://www.vupen.com/english/advisories/2007/3456

http://www.securitytracker.com/id?1018797

http://www.securityfocus.com/bid/26000

http://www.cisco.com/en/US/products/products_security_advisory09186a00808d72db.shtml

http://osvdb.org/37936

Details

Source: Mitre, NVD

Published: 2007-10-12

Updated: 2026-06-16

Risk Information

CVSS v2

Base Score: 10

Vector: CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C

Severity: Critical

CVSS v3

Base Score: 9.8

Vector: CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Severity: Critical

EPSS

EPSS: 0.02372