CVE-2020-3497

Name of the Vulnerable Software and Affected Versions: Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers (affected versions not specified)

Description: The issue is related to errors in processing input data in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol implementation. This could allow a remote attacker to cause a denial of service (DoS) condition on an affected device. The vulnerabilities are due to insufficient validation of CAPWAP packets. An attacker could exploit these vulnerabilities by sending a malformed CAPWAP packet to an affected device, potentially causing the device to crash and reload.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.