CVE-2024-20303

Name of the Vulnerable Software and Affected Versions Cisco IOS XE Software for Wireless LAN Controllers (WLCs) (affected versions not specified)

Description A vulnerability in the multicast DNS (mDNS) gateway feature could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition. This is due to improper management of mDNS client entries. An attacker could exploit this by connecting to the wireless network and sending a continuous stream of specific mDNS packets, causing the wireless controller to have high CPU utilization, which could lead to access points (APs) losing their connection to the controller.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability. However, Cisco has released software updates that address this vulnerability. As a temporary workaround, consider restricting access to the mDNS gateway feature until a patch is available. Avoid using the mDNS gateway feature in the affected Cisco IOS XE Software for Wireless LAN Controllers (WLCs) until the issue is resolved.