Denial of Service Vulnerability in Cisco Mobility Express Access Points
CVE-2016-9220

4.3MEDIUM

Key Information:

Vendor: Cisco
Status: Cisco Mobility Express 2800 And 3800
Vendor: CVE Published:; 26 January 2017

What is CVE-2016-9220?

A vulnerability affecting Cisco Mobility Express 2800 and 3800 Access Points allows an unauthenticated attacker in proximity to exhaust the connection table by creating numerous invalid connections. This leads to an inability to process legitimate incoming requests, potentially disrupting network services. This issue is particularly critical for environments relying heavily on Wireless Access Points for connectivity. It is important for users to be aware of available patches and security releases to safeguard their networks.

Affected Version(s)

Cisco Mobility Express 2800 and 3800 Cisco Mobility Express 2800 and 3800

References

https://tools.cisco.com/security/center/content/CiscoSecu...

x_refsource_CONFIRM

http://www.securityfocus.com/bid/95633

vdb-entryx_refsource_BID

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

None

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Jan 26, 2017
Vulnerability Reserved
Nov 6, 2016