CVE-2017-12282

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controllers (affected versions not specified)

Description A vulnerability in the Access Network Query Protocol (ANQP) ingress frame processing functionality could allow an unauthenticated, Layer 2 RF-adjacent attacker to cause an affected device to restart unexpectedly, resulting in a denial of service (DoS) condition. This is due to incomplete input validation of ANQP query frames by the affected device. An attacker could exploit this by sending a malformed ANQP query frame to an affected device on an RF-adjacent network, causing the device to restart and resulting in a DoS condition.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.