CVE-2022-20761

Name of the Vulnerable Software and Affected Versions Cisco 1000 Series Connected Grid Router (CGR1K) (affected versions not specified)

Description A vulnerability in the integrated wireless access point (AP) packet processing could allow an unauthenticated, adjacent attacker to cause a denial of service condition on an affected device. This issue is due to insufficient input validation of received traffic. An attacker could exploit this vulnerability by sending crafted traffic to an affected device, causing the integrated AP to stop processing traffic and resulting in a denial of service condition. It may be necessary to manually reload the device to restore AP operation.

Recommendations For the Cisco 1000 Series Connected Grid Router (CGR1K), update to a version that includes the software updates released by Cisco to address this vulnerability. As a temporary workaround, consider manually reloading the CGR1K to restore AP operation after a successful exploit. There are no other workarounds that address this vulnerability.