Unrated severityNVD Advisory· Published Feb 13, 2013· Updated Apr 29, 2026

CVE-2013-1131

Description

Cisco Small Business Wireless Access Points WAP200, WAP2000, WAP200E, and WET200 allow remote attackers to cause a denial of service or possibly have unspecified other impact via a crafted SSID that is not properly handled during a site survey, aka Bug IDs CSCua86182, CSCua91196, CSCud36155, and CSCua86190.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Cisco Small Business WAP200, WAP2000, WAP200E, and WET200 access points are vulnerable to denial of service via a crafted SSID during site survey.

Vulnerability

Cisco Small Business Wireless Access Points models WAP200, WAP2000, WAP200E, and WET200 contain a vulnerability in the handling of SSID values during a site survey. A remote attacker can send a specially crafted SSID that is not properly processed, leading to a denial of service condition. The affected firmware versions are not explicitly listed in the available reference [1], but all models are impacted.

Exploitation

An attacker must be within wireless range of the target access point and able to transmit a probe request or beacon frame containing a malformed SSID. No authentication is required. The crafted SSID triggers an error in the site survey routine, causing the device to crash or become unresponsive.

Impact

Successful exploitation results in a denial of service, preventing legitimate clients from associating with the access point. The description also notes the possibility of unspecified other impact, though no further details are provided in the reference [1].

Mitigation

Cisco has not disclosed a specific firmware fix or workaround in the available reference [1]. Affected users should consult Cisco's security advisory for updated firmware releases. As of the publication date (2013-02-13), no patch is confirmed.

References

Security Advisories

AI Insight generated on May 24, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.

Affected products

Cisco Systems, Inc./Small Business Wireless Access Ppoints5 versions
cpe:2.3:h:cisco:small_business_wireless_access_ppoints:wap200:*:*:*:*:*:*:*+ 4 more
- cpe:2.3:h:cisco:small_business_wireless_access_ppoints:wap200:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:small_business_wireless_access_ppoints:wap2000:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:small_business_wireless_access_ppoints:wap200e:*:*:*:*:*:*:*
- cpe:2.3:h:cisco:small_business_wireless_access_ppoints:wet200:*:*:*:*:*:*:*
- (no CPE)
Cisco Systems, Inc./WAP200llm-create
Cisco Systems, Inc./WET200llm-create

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2013-1131nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000