Medium severity4.3NVD Advisory· Published Jan 26, 2017· Updated May 13, 2026

CVE-2016-9221

Description

A Denial of Service Vulnerability in 802.11 ingress connection authentication handling for the Cisco Mobility Express 2800 and 3800 Access Points (APs) could allow an unauthenticated, adjacent attacker to cause authentication to fail. Affected Products: This vulnerability affects Cisco Mobility Express 2800 Series and 3800 Series Access Points when configured in local mode in 40 MHz. More Information: CSCvb33575. Known Affected Releases: 8.2(121.12) 8.4(1.82). Known Fixed Releases: 8.2(131.2) 8.2(131.3) 8.2(131.4) 8.2(141.0) 8.3(104.53) 8.3(104.54) 8.4(1.80) 8.4(1.85).

Affected products

Cisco Systems, Inc./Aironet Access Point Software2 versions
cpe:2.3:o:cisco:aironet_access_point_software:8.2\(121.12\):*:*:*:*:*:*:*+ 1 more
- cpe:2.3:o:cisco:aironet_access_point_software:8.2\(121.12\):*:*:*:*:*:*:*
- cpe:2.3:o:cisco:aironet_access_point_software:8.4\(1.82\):*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.securityfocus.com/bid/95631nvdThird Party AdvisoryVDB Entry
tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20170118-cme2nvdVendor Advisory

News mentions

No linked articles in our index yet.

cvss	0.280
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000