PT-2017-9999 · Cisco · Cisco Mobility Express 2800 Series Access Points+1
Published
2017-01-26
·
Updated
2017-01-27
·
CVE-2016-9221
CVSS v3.1
4.3
Medium
| Vector | AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L |
Name of the Vulnerable Software and Affected Versions
Cisco Mobility Express 2800 Series Access Points versions 8.2(121.12) through 8.4(1.82)
Cisco Mobility Express 3800 Series Access Points versions 8.2(121.12) through 8.4(1.82)
Description
A Denial of Service issue in 802.11 ingress connection authentication handling could allow an unauthenticated, adjacent attacker to cause authentication to fail. This issue affects products when configured in local mode in 40 MHz.
Recommendations
For Cisco Mobility Express 2800 Series Access Points version 8.2(121.12), update to version 8.2(131.2) or later.
For Cisco Mobility Express 2800 Series Access Points version 8.4(1.82), update to version 8.4(1.85) or later.
For Cisco Mobility Express 3800 Series Access Points version 8.2(121.12), update to version 8.2(131.2) or later.
For Cisco Mobility Express 3800 Series Access Points version 8.4(1.82), update to version 8.4(1.85) or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Cisco Mobility Express 2800 Series Access Points
Cisco Mobility Express 3800 Series Access Points