Security Alert (A19-10-05): Multiple Vulnerabilities in Cisco Aironet Access Points
17 October 2019
Cisco released security advisories to address the vulnerabilities in Cisco Aironet Access Points (APs). An unauthenticated remote attacker could exploit the vulnerabilities by requesting specific URLs from an affected AP, passing a specially crafted GRE frame through an affected AP, or sending a burst of wireless management frames to an affected AP.
Aironet 1540 Series APs
Aironet 1560 Series APs
Aironet 1800 Series APs
Aironet 1810 Series APs
Aironet 1830 Series APs
Aironet 1850 Series APs
Aironet 2800 Series APs
Aironet 3800 Series APs
Aironet 4800 APs
Catalyst 9100 APs
For detailed information of the affected products, please refer to the section "Affected Products" of corresponding security advisory at vendor's website.
Depending on the vulnerability exploited, a successful exploitation could lead to privilege escalation or denial of services on an affected system.
Software updates for affected systems are now available. System administrators of affected systems should follow the recommendations provided by the product vendor and take immediate actions to mitigate the risk. For detailed information of the available patches, please refer to the section "Fixed Software" of corresponding security advisory at vendor's website.
System administrators should contact their product support vendors for the fixes and assistance.