Cisco Aironet Access Points WLAN Control Protocol Packet Buffer Leak Denial of Service Vulnerability
Description
A vulnerability in the WLAN Control Protocol (WCP) implementation for Cisco Aironet Access Point (AP) software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. This vulnerability is due to incorrect error handling when an affected device receives an unexpected 802.11 frame. An attacker could exploit this vulnerability by sending certain 802.11 frames over the wireless network to an interface on an affected AP. A successful exploit could allow the attacker to cause a packet buffer leak. This could eventually result in buffer allocation failures, which would trigger a reload of the affected device.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
A vulnerability in Cisco Aironet AP WLAN Control Protocol allows unauthenticated adjacent attacker to cause a DoS via crafted 802.11 frames.
Vulnerability
The vulnerability resides in the WLAN Control Protocol (WCP) implementation of Cisco Aironet Access Point (AP) software. It stems from incorrect error handling when the device receives an unexpected 802.11 frame. Affected versions include releases prior to the fixed versions indicated in Cisco Security Advisory cisco-sa-airo-wpa-pktleak-dos-uSTyGrL [1]. The vulnerability does not require any special configuration to be exploitable.
Exploitation
An unauthenticated attacker with adjacency to the wireless network can exploit this vulnerability by sending specially crafted 802.11 frames to an interface on the affected AP. No authentication or user interaction is required. The attacker simply needs to be within radio range and transmit the malicious frames.
Impact
Successful exploitation leads to a packet buffer leak, which over time causes buffer allocation failures. This eventually triggers a reload of the affected device, resulting in a denial of service (DoS) condition. No information disclosure or privilege escalation occurs; the impact is solely on availability.
Mitigation
Cisco has released free software updates to address this vulnerability. Customers should upgrade their Aironet AP software to the fixed versions listed in the Cisco Security Advisory [1]. No workarounds are available. Devices running software versions prior to the fixed releases are considered vulnerable.
AI Insight generated on May 26, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2- Range: n/a
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
1- tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-airo-wpa-pktleak-dos-uSTyGrLmitrevendor-advisoryx_refsource_CISCO
News mentions
0No linked articles in our index yet.