CVE-2021-34767

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9000 Family Wireless Controllers (affected versions not specified)

Description A logic error in the processing of specific link-local IPv6 traffic could allow an unauthenticated, adjacent attacker to cause a Layer 2 (L2) loop in a configured VLAN, resulting in a denial of service (DoS) condition for that VLAN. An attacker could exploit this issue by sending a crafted IPv6 packet that would flow inbound through the wired interface of an affected device, potentially causing traffic drops in the affected VLAN and triggering the DoS condition.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.