Cisco Wireless Access Point Software Device Analytics Action Frame Injection Vulnerability
CVE-2025-20364

4.3MEDIUM

Key Information:

Vendor: Cisco
Status: Cisco Aironet Access Point Software (iOS Xe Controller)
Vendor: CVE Published:; 24 September 2025

Badges

👾 Exploit Exists

What is CVE-2025-20364?

A vulnerability in the Device Analytics action frame processing of Cisco Wireless Access Point (AP) Software could allow an unauthenticated, adjacent attacker to inject wireless 802.11 action frames with arbitrary information.

This vulnerability is due to insufficient verification checks of incoming 802.11 action frames. An attacker could exploit this vulnerability by sending 802.11 Device Analytics action frames with arbitrary parameters. A successful exploit could allow the attacker to inject Device Analytics action frames with arbitrary information, which could modify the Device Analytics data of valid wireless clients that are connected to the same wireless controller.

Affected Version(s)

Cisco Aironet Access Point Software (IOS XE Controller) 17.1.1t

Cisco Aironet Access Point Software (IOS XE Controller) 16.10.1s

Cisco Aironet Access Point Software (IOS XE Controller) 16.10.1

References

https://sec.cloudapps.cisco.com/security/center/content/C...

CVSS V3.1

Score:

4.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

Low

Availability:

None

Attack Vector:

Adjacent Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

👾
Exploit known to exist
Sep 24, 2025
Vulnerability published
Sep 24, 2025
Vulnerability Reserved
Oct 10, 2024

JSON