QID 316909
Date Published: 2021-03-26
QID 316909: Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family CAPWAP Denial of Service Vulnerability(cisco-sa-ewlc-capwap-dos-2OA3JgKS)
A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing
of Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family Wireless Controllers
could allow an unauthenticated, remote attacker to cause a
denial of service (DoS) condition of an affected device.
Affected Products
Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family if the device is running a vulnerable release. The following hardware platforms are vulnerable:
i. Catalyst 9800 Embedded Wireless Controller for Catalyst 9300, 9400, and 9500 Series Switches
ii. Catalyst 9800 Series Wireless Controllers
iii. Embedded Wireless Controller on Catalyst Access Points
QID Detection Logic (Authenticated):
The check matches Cisco IOS XE version retrieved via Unix Auth using "show version" command.
QID Detection Logic (Unauthenticated):
The check matches Cisco IOS XE version retrieved via SNMP or TCP/IP Fingerprint or NTP or Telnet.
A successful exploit could allow the attacker to cause the affected device to crash and reload, resulting in a DoS condition.
Customers are advised to refer to cisco-sa-ewlc-capwap-dos-2OA3JgKS for more information.
- cisco-sa-ewlc-capwap-dos-2OA3JgKS -
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-capwap-dos-2OA3JgKS
CVEs related to QID 316909
| Advisory ID | Software | Component | Link |
|---|---|---|---|
| cisco-sa-ewlc-capwap-dos-2OA3JgKS |
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-capwap-dos-2OA3JgKS |