CVE-2017-12280

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controllers (affected versions not specified)

Description A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) Discovery Request parsing functionality could allow an unauthenticated, remote attacker to cause an affected device to restart unexpectedly, resulting in a denial of service (DoS) condition. The issue is due to incomplete input validation of fields in CAPWAP Discovery Request packets by the affected device. An attacker could exploit this by sending crafted CAPWAP Discovery Request packets to an affected device, potentially causing it to restart and resulting in a DoS condition.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.