CVE-2016-9219

Name of the Vulnerable Software and Affected Versions Cisco Wireless LAN Controller (WLC) versions 8.2.121.0 through 8.3.102.0

Description A vulnerability in IPv6 UDP ingress packet processing could allow an unauthenticated, remote attacker to cause an unexpected reload of the device. The issue is due to incomplete IPv6 UDP header validation. An attacker could exploit this by sending a crafted IPv6 UDP packet to a specific port on the targeted device, impacting the device's availability.

Recommendations For version 8.2.121.0, update to a fixed software version. For version 8.3.102.0, update to a fixed software version. As a temporary workaround, consider restricting access to the device to minimize the risk of exploitation.