CVE-2021-1439

Name of the Vulnerable Software and Affected Versions: Cisco Aironet Series Access Points Software (affected versions not specified)

Description: A vulnerability in the multicast DNS (mDNS) gateway feature could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This issue is due to insufficient input validation of incoming mDNS traffic. An attacker could exploit this by sending a crafted mDNS packet to an affected device through a wireless network configured in FlexConnect local switching mode or through a wired network on a configured mDNS VLAN. A successful exploit could allow the attacker to cause the access point (AP) to reboot, resulting in a DoS condition.

Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability.