Cisco Aironet 1560, 1800, 2800, and 3800 Series Access Points Denial of Service Vulnerability
Description
A vulnerability in the Cisco Aironet Series Access Points (APs) software could allow an authenticated, adjacent attacker to cause an affected device to reload unexpectedly, resulting in a denial of service (DoS) condition. The vulnerability is due to a deadlock condition that may occur when an affected AP attempts to dequeue aggregated traffic that is destined to an attacker-controlled wireless client. An attacker who can successfully transition between multiple Service Set Identifiers (SSIDs) hosted on the same AP while replicating the required traffic patterns could trigger the deadlock condition. A watchdog timer that detects the condition will trigger a reload of the device, resulting in a DoS condition while the device restarts.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A deadlock in Cisco Aironet APs allows an authenticated adjacent attacker to trigger a denial of service by causing the device to reload.
Vulnerability
A deadlock condition exists in the Cisco Aironet Series Access Points (APs) software when an affected AP attempts to dequeue aggregated traffic destined to an attacker-controlled wireless client. This vulnerability affects Cisco 1560, 1800, 2800, and 3800 Series Access Points running a vulnerable release of Cisco Mobility Express (ME) Software [1]. The deadlock occurs when an attacker transitions between multiple Service Set Identifiers (SSIDs) hosted on the same AP while replicating specific traffic patterns.
Exploitation
An attacker must be authenticated and adjacent to the affected AP. The attacker must be able to transition between multiple SSIDs hosted on the same AP and replicate the required traffic patterns to trigger the deadlock condition. No additional privileges or user interaction beyond authentication is required [1].
Impact
Successful exploitation causes the AP to reload unexpectedly due to a watchdog timer detecting the deadlock, resulting in a denial of service (DoS) condition while the device restarts. The impact is limited to temporary loss of wireless connectivity for clients associated with the affected AP [1].
Mitigation
Cisco has released software updates to address this vulnerability. Administrators should upgrade to a fixed Cisco Mobility Express Software release as specified in the Cisco Security Advisory [1]. No workarounds are available. The Cisco Aironet 1550 Series Outdoor Access Point is end-of-life and was not investigated; users should migrate to supported products.
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: 8.2
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
3- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181017-aironet-dosmitrevendor-advisoryx_refsource_CISCO
- www.securityfocus.com/bid/105685mitrevdb-entryx_refsource_BID
- www.securitytracker.com/id/1041929mitrevdb-entryx_refsource_SECTRACK
News mentions
0No linked articles in our index yet.