{"api_version":"1","generated_at":"2026-04-23T09:51:11+00:00","cve":"CVE-2009-2976","urls":{"html":"https://cve.report/CVE-2009-2976","api":"https://cve.report/api/cve/CVE-2009-2976.json","docs":"https://cve.report/api","cve_org":"https://www.cve.org/CVERecord?id=CVE-2009-2976","nvd":"https://nvd.nist.gov/vuln/detail/CVE-2009-2976"},"summary":{"title":"CVE-2009-2976","description":"Cisco Aironet Lightweight Access Point (AP) devices send the contents of certain multicast data frames in cleartext, which allows remote attackers to discover Wireless LAN Controller MAC addresses and IP addresses, and AP configuration details, by sniffing the wireless network.","state":"PUBLISHED","assigner":"mitre","published_at":"2009-08-27 17:30:00","updated_at":"2026-04-23 00:35:47"},"problem_types":["CWE-310","n/a"],"metrics":[{"version":"2.0","source":"nvd@nist.gov","type":"Primary","score":"7.8","severity":"","vector":"AV:N/AC:L/Au:N/C:C/I:N/A:N","data":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:N/A:N","baseScore":7.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"NONE","availabilityImpact":"NONE"}}],"references":[{"url":"http://www.airmagnet.com/assets/AM_Technote_SkyJack_082509.pdf","name":"http://www.airmagnet.com/assets/AM_Technote_SkyJack_082509.pdf","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"AirMagnet - Page Not Found","mime":"application/pdf","httpstatus":"200","archivestatus":"200"},{"url":"http://www.airmagnet.com/news/press_releases/2009/08252009.php","name":"http://www.airmagnet.com/news/press_releases/2009/08252009.php","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"AirMagnet Identifies New Vulnerability and Potential Exploit Associated With Cisco WLAN Access Points","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"http://securitytracker.com/id?1022774","name":"http://securitytracker.com/id?1022774","refsource":"af854a3a-2127-422b-91ae-364da2661108","tags":[],"title":"SecurityTracker.com Archives - Cisco Access Points Disclose Potentially Sensitive Information and May Let Remote Users Hijack APs","mime":"text/html","httpstatus":"200","archivestatus":"200"},{"url":"https://www.cve.org/CVERecord?id=CVE-2009-2976","name":"CVE Program record","refsource":"CVE.ORG","tags":["canonical"]},{"url":"https://nvd.nist.gov/vuln/detail/CVE-2009-2976","name":"NVD vulnerability detail","refsource":"NVD","tags":["canonical","analysis"]}],"affected":[{"source":"CNA","vendor":"n/a","product":"n/a","version":"affected n/a","platforms":[]}],"timeline":[],"solutions":[],"workarounds":[],"exploits":[],"credits":[],"nvd_cpes":[{"cve_year":"2009","cve_id":"2976","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"cisco","cpe5":"aironet_ap1100","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"},{"cve_year":"2009","cve_id":"2976","vulnerable":"1","versionEndIncluding":"","cpe1":"cpe","cpe2":"2.3","cpe3":"h","cpe4":"cisco","cpe5":"aironet_ap1200","cpe6":"*","cpe7":"*","cpe8":"*","cpe9":"*","cpe10":"*","cpe11":"*","cpe12":"*","cpe13":"*"}],"vendor_comments":[],"enrichments":{"kev":null,"epss":null,"legacy_qids":[]},"source_records":{"cve_program":{"containers":{"adp":[{"providerMetadata":{"dateUpdated":"2024-08-07T06:07:37.396Z","orgId":"af854a3a-2127-422b-91ae-364da2661108","shortName":"CVE"},"references":[{"tags":["x_refsource_MISC","x_transferred"],"url":"http://www.airmagnet.com/assets/AM_Technote_SkyJack_082509.pdf"},{"name":"1022774","tags":["vdb-entry","x_refsource_SECTRACK","x_transferred"],"url":"http://securitytracker.com/id?1022774"},{"tags":["x_refsource_MISC","x_transferred"],"url":"http://www.airmagnet.com/news/press_releases/2009/08252009.php"}],"title":"CVE Program Container"}],"cna":{"affected":[{"product":"n/a","vendor":"n/a","versions":[{"status":"affected","version":"n/a"}]}],"descriptions":[{"lang":"en","value":"Cisco Aironet Lightweight Access Point (AP) devices send the contents of certain multicast data frames in cleartext, which allows remote attackers to discover Wireless LAN Controller MAC addresses and IP addresses, and AP configuration details, by sniffing the wireless network."}],"problemTypes":[{"descriptions":[{"description":"n/a","lang":"en","type":"text"}]}],"providerMetadata":{"dateUpdated":"2009-08-27T17:00:00.000Z","orgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","shortName":"mitre"},"references":[{"tags":["x_refsource_MISC"],"url":"http://www.airmagnet.com/assets/AM_Technote_SkyJack_082509.pdf"},{"name":"1022774","tags":["vdb-entry","x_refsource_SECTRACK"],"url":"http://securitytracker.com/id?1022774"},{"tags":["x_refsource_MISC"],"url":"http://www.airmagnet.com/news/press_releases/2009/08252009.php"}],"x_legacyV4Record":{"CVE_data_meta":{"ASSIGNER":"cve@mitre.org","ID":"CVE-2009-2976","STATE":"PUBLIC"},"affects":{"vendor":{"vendor_data":[{"product":{"product_data":[{"product_name":"n/a","version":{"version_data":[{"version_value":"n/a"}]}}]},"vendor_name":"n/a"}]}},"data_format":"MITRE","data_type":"CVE","data_version":"4.0","description":{"description_data":[{"lang":"eng","value":"Cisco Aironet Lightweight Access Point (AP) devices send the contents of certain multicast data frames in cleartext, which allows remote attackers to discover Wireless LAN Controller MAC addresses and IP addresses, and AP configuration details, by sniffing the wireless network."}]},"problemtype":{"problemtype_data":[{"description":[{"lang":"eng","value":"n/a"}]}]},"references":{"reference_data":[{"name":"http://www.airmagnet.com/assets/AM_Technote_SkyJack_082509.pdf","refsource":"MISC","url":"http://www.airmagnet.com/assets/AM_Technote_SkyJack_082509.pdf"},{"name":"1022774","refsource":"SECTRACK","url":"http://securitytracker.com/id?1022774"},{"name":"http://www.airmagnet.com/news/press_releases/2009/08252009.php","refsource":"MISC","url":"http://www.airmagnet.com/news/press_releases/2009/08252009.php"}]}}}},"cveMetadata":{"assignerOrgId":"8254265b-2729-46b6-b9e3-3dfca2d5bfca","assignerShortName":"mitre","cveId":"CVE-2009-2976","datePublished":"2009-08-27T17:00:00.000Z","dateReserved":"2009-08-27T00:00:00.000Z","dateUpdated":"2024-09-16T18:49:52.602Z","state":"PUBLISHED"},"dataType":"CVE_RECORD","dataVersion":"5.1"},"nvd":{"publishedDate":"2009-08-27 17:30:00","lastModifiedDate":"2026-04-23 00:35:47","problem_types":["CWE-310","n/a"],"metrics":{"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:N/C:C/I:N/A:N","baseScore":7.8,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"NONE","confidentialityImpact":"COMPLETE","integrityImpact":"NONE","availabilityImpact":"NONE"},"baseSeverity":"HIGH","exploitabilityScore":10,"impactScore":6.9,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"configurations":[{"nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:h:cisco:aironet_ap1100:*:*:*:*:*:*:*:*","matchCriteriaId":"6D954F30-8AD0-41E9-8D62-BEFEBDCB3B6D"},{"vulnerable":true,"criteria":"cpe:2.3:h:cisco:aironet_ap1200:*:*:*:*:*:*:*:*","matchCriteriaId":"2E8B5553-7295-4786-9F81-B4527EAD4F0B"}]}]}]},"legacy_mitre":{"record":{"CveYear":"2009","CveId":"2976","Ordinal":"1","Title":"CVE-2009-2976","CVE":"CVE-2009-2976","Year":"2009"},"notes":[{"CveYear":"2009","CveId":"2976","Ordinal":"1","NoteData":"Cisco Aironet Lightweight Access Point (AP) devices send the contents of certain multicast data frames in cleartext, which allows remote attackers to discover Wireless LAN Controller MAC addresses and IP addresses, and AP configuration details, by sniffing the wireless network.","Type":"Description","Title":"CVE-2009-2976"},{"CveYear":"2009","CveId":"2976","Ordinal":"2","NoteData":"2009-08-27","Type":"Other","Title":"Published"}]}}}