Luke Jenkins

**Name of the Vulnerable Software and Affected Versions** Cisco Business 150 versions (affected versions not specified) Cisco Business 151 Mesh Extenders versions (affected versions not specified) Cisco Catalyst 9100 versions (affected versions not specified) **Description** The issue is related to a buffer overflow in the software of certain Cisco access points. It could allow a remote attacker to cause a denial of service condition on an affected device. This is due to insufficient validation of certain parameters within 802.11 frames. An attacker could exploit this by sending a wireless 802.11 association request frame with crafted parameters to an affected device, potentially causing an unexpected reload and resulting in a denial of service condition. **Recommendations** For Cisco Business 150, update to a version that fixes the buffer overflow issue. For Cisco Business 151 Mesh Extenders, update to a version that fixes the buffer overflow issue. For Cisco Catalyst 9100, update to a version that fixes the buffer overflow issue. As a temporary workaround, consider restricting access to the affected devices until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Baicells Nova436Q and Neutrino 430 devices with firmware through QRTB 2.7.8 **Description** The issue concerns hardcoded credentials in the firmware of Baicells devices, which can be easily discovered and used by remote attackers to authenticate via ssh. These credentials are stored in the firmware and encrypted by the crypt function. **Recommendations** For Baicells Nova436Q and Neutrino 430 devices with firmware through QRTB 2.7.8, consider changing the default credentials as a temporary workaround, and restrict ssh access to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9000 Family Wireless Controllers (affected versions not specified) **Description** A logic error in the processing of specific link-local IPv6 traffic could allow an unauthenticated, adjacent attacker to cause a Layer 2 (L2) loop in a configured VLAN, resulting in a denial of service (DoS) condition for that VLAN. An attacker could exploit this issue by sending a crafted IPv6 packet that would flow inbound through the wired interface of an affected device, potentially causing traffic drops in the affected VLAN and triggering the DoS condition. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.