CVE-2009-0058

The Cisco Wireless LAN Controller (WLC), Cisco Catalyst 6500 Wireless Services Module (WiSM), and Cisco Catalyst 3750 Integrated Wireless LAN Controller with software 4.x before 4.2.176.0 and 5.x before 5.2 allow remote attackers to cause a denial of service (web authentication outage or device reload) via unspecified network traffic, as demonstrated by a vulnerability scanner.

Published: 2009-02-04 Last update: 2026-06-16 Assigner: [email protected] Source: [email protected]
NVD Status:ModifiedCVE State: published
View at NVD, CVE.org, EUVD

CVE-2009-0058 is rated Moderate Risk (42.6/100): CVSS Medium severity, with medium exploitation likelihood (EPSS 0.78%). Review affected assets and schedule remediation.

Risk is dynamic; we continuously reassess and refresh what is shown on this page as upstream context changes.

Exploit prediction scoring system (EPSS) score for CVE-2009-0058

EPSS lead: Daily EPSS estimates relative likelihood of exploitation; percentile ranks this CVE among scored vulnerabilities (higher = more severe relative rank).

# Date Old EPSS score New EPSS score Delta (New - Old)
1 2026-06-15 0.40% 0.78% +0.38%
2 2025-03-19 0.55% 0.40% -0.14%
3 2025-03-17 0.55%

Full EPSS history (5 records total)

Common vulnerability scoring system (CVSS) metrics for CVE-2009-0058

CVSS metrics for this CVE.

Base score Version Severity Vector Exploitability Impact Score source
6.1 2.0 MEDIUM
AV:A/AC:L/Au:N/C:N/I:N/A:C Click to expand
Access vector (AV:A)
Requires access to an adjacent network segment.
Access complexity (AC:L)
Exploitation conditions are straightforward and predictable.
Authentication (AU:N)
No authentication is required.
Confidentiality impact (C:N)
No confidentiality impact.
Integrity impact (I:N)
No integrity impact.
Availability impact (A:C)
Complete availability impact.
 6.5 6.9 [email protected]

Weakness enumeration for CVE-2009-0058

Affected software / configurations for CVE-2009-0058

Vendor Product Version Raw CPE
cisco 4400_wireless_lan_controller 4.1 cpe:2.3:h:cisco:4400_wireless_lan_controller:4.1:*:*:*:*:*:*:*
cisco 4400_wireless_lan_controller 4.2 cpe:2.3:h:cisco:4400_wireless_lan_controller:4.2:*:*:*:*:*:*:*
cisco 4400_wireless_lan_controller 5.2 cpe:2.3:h:cisco:4400_wireless_lan_controller:5.2:*:*:*:*:*:*:*
cisco catalyst_3750_series_integrated_wireless_lan_controller 4.1 cpe:2.3:h:cisco:catalyst_3750_series_integrated_wireless_lan_controller:4.1:*:*:*:*:*:*:*
cisco catalyst_3750_series_integrated_wireless_lan_controller 4.2 cpe:2.3:h:cisco:catalyst_3750_series_integrated_wireless_lan_controller:4.2:*:*:*:*:*:*:*
cisco catalyst_3750_series_integrated_wireless_lan_controller 5.2 cpe:2.3:h:cisco:catalyst_3750_series_integrated_wireless_lan_controller:5.2:*:*:*:*:*:*:*
cisco catalyst_6500_series_integrated_wireless_lan_controller 4.1 cpe:2.3:h:cisco:catalyst_6500_series_integrated_wireless_lan_controller:4.1:*:*:*:*:*:*:*
cisco catalyst_6500_series_integrated_wireless_lan_controller 4.2 cpe:2.3:h:cisco:catalyst_6500_series_integrated_wireless_lan_controller:4.2:*:*:*:*:*:*:*
cisco catalyst_6500_series_integrated_wireless_lan_controller 5.2 cpe:2.3:h:cisco:catalyst_6500_series_integrated_wireless_lan_controller:5.2:*:*:*:*:*:*:*
cisco catalyst_7600_series_wireless_lan_controller 4.1 cpe:2.3:h:cisco:catalyst_7600_series_wireless_lan_controller:4.1:*:*:*:*:*:*:*
cisco catalyst_7600_series_wireless_lan_controller 4.2 cpe:2.3:h:cisco:catalyst_7600_series_wireless_lan_controller:4.2:*:*:*:*:*:*:*
cisco catalyst_7600_series_wireless_lan_controller 5.2 cpe:2.3:h:cisco:catalyst_7600_series_wireless_lan_controller:5.2:*:*:*:*:*:*:*
cisco wireless_lan_controller_software 4.1 cpe:2.3:o:cisco:wireless_lan_controller_software:4.1:*:*:*:*:*:*:*
cisco wireless_lan_controller_software 4.2 cpe:2.3:o:cisco:wireless_lan_controller_software:4.2:*:*:*:*:*:*:*
cisco wireless_lan_controller_software 5.2 cpe:2.3:o:cisco:wireless_lan_controller_software:5.2:*:*:*:*:*:*:*

References for CVE-2009-0058

cvelogic Threat Intelligence