Cisco IOS XE Wireless Controller Software for the Catalyst 9000 Family SNMP Trap Denial of Service Vulnerability

2020-09-2416:00:00

tools.cisco.com

0.001 Low

EPSS

Percentile

25.2%

JSON

A vulnerability in Simple Network Management Protocol (SNMP) trap generation for wireless clients of the Cisco IOS XE Wireless Controller Software for the Cisco Catalyst 9000 Family could allow an unauthenticated, adjacent attacker to cause the device to unexpectedly reload, causing a denial of service (DoS) condition on an affected device.

The vulnerability is due to the lack of input validation of the information used to generate an SNMP trap in relation to a wireless client connection. An attacker could exploit this vulnerability by sending an 802.1x packet with crafted parameters during the wireless authentication setup phase of a connection. A successful exploit could allow the attacker to cause the device to reload, causing a DoS condition.

Cisco has released software updates that address this vulnerability. There are workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-ewlc-snmp-dos-wNkedg9K [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-iosxe-ewlc-snmp-dos-wNkedg9K”]

This advisory is part of the September 24, 2020, release of the Cisco IOS and IOS XE Software Security Advisory Bundled Publication, which includes 25 Cisco Security Advisories that describe 34 vulnerabilities. For a complete list of the advisories and links to them, see Cisco Event Response: September 2020 Semiannual Cisco IOS and IOS XE Software Security Advisory Bundled Publication [“https://sec.cloudapps.cisco.com/security/center/viewErp.x?alertId=ERP-74268”].

Affected configurations

Vulners

Node

ciscorvs4000_softwareMatch16.10

ciscorvs4000_softwareMatch16.11

ciscorvs4000_softwareMatch16.12

ciscorvs4000_softwareMatch17.1

ciscorvs4000_softwareMatchany

ciscorvs4000_softwareMatch16.10.1

ciscorvs4000_softwareMatch16.10.1s

ciscorvs4000_softwareMatch16.10.1e

ciscorvs4000_softwareMatch16.11.1

ciscorvs4000_softwareMatch16.11.1a

ciscorvs4000_softwareMatch16.11.1b

ciscorvs4000_softwareMatch16.11.2

ciscorvs4000_softwareMatch16.11.1c

ciscorvs4000_softwareMatch16.12.1

ciscorvs4000_softwareMatch16.12.1s

ciscorvs4000_softwareMatch16.12.2s

ciscorvs4000_softwareMatch16.12.1t

ciscorvs4000_softwareMatch16.12.2t

ciscorvs4000_softwareMatch17.1.1

ciscorvs4000_softwareMatchany

CPENameOperatorVersion
cisco ios xe softwareeq16.10
cisco ios xe softwareeq16.11
cisco ios xe softwareeq16.12
cisco ios xe softwareeq17.1
cisco ios xe softwareeqany
cisco ios xe softwareeq16.10.1
cisco ios xe softwareeq16.10.1s
cisco ios xe softwareeq16.10.1e
cisco ios xe softwareeq16.11.1
cisco ios xe softwareeq16.11.1a

Name	Operator	Version
cisco ios xe software	eq	16.10
cisco ios xe software	eq	16.11
cisco ios xe software	eq	16.12
cisco ios xe software	eq	17.1
cisco ios xe software	eq	any
cisco ios xe software	eq	16.10.1
cisco ios xe software	eq	16.10.1s
cisco ios xe software	eq	16.10.1e
cisco ios xe software	eq	16.11.1
cisco ios xe software	eq	16.11.1a