A successful exploit could allow the attacker to cause the affected device to crash and reload, resulting in a DoS condition.Ī vulnerability in IPv6 traffic processing of Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, adjacent attacker to cause a Layer 2 (L2) loop in a configured VLAN, resulting in a denial of service (DoS) condition for that VLAN.
An attacker could exploit the vulnerabilities by sending a malformed CAPWAP packet to an affected device. These vulnerabilities are due to insufficient validation of CAPWAP packets. Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
A successful exploit could allow the attacker to execute arbitrary code with administrative privileges or cause the affected device to crash and reload, resulting in a DoS condition. An attacker could exploit this vulnerability by sending a crafted CAPWAP packet to an affected device.
The vulnerability is due to a logic error that occurs during the validation of CAPWAP packets. A successful exploit could allow the attacker to view sensitive configuration information that their privileges might not otherwise allow them to access.Ī vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, remote attacker to execute arbitrary code with administrative privileges or cause a denial of service (DoS) condition on an affected device. An attacker could exploit this vulnerability by running a specific command. This vulnerability is due to insufficient application of restrictions during the execution of a specific command. A vulnerability in the Cisco IOS XR Software CLI could allow an authenticated, local attacker to view more information than their privileges allow.
0 kommentar(er)
