CVE-2018-0441— Cisco IOS Access Points Software 802.11r Fast Transition Denial of Service Vulnerability
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2018-0441
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Cisco IOS Access Points Software 802.11r Fast Transition Denial of Service Vulnerability
Source: NVD (National Vulnerability Database)
Vulnerability Description
A vulnerability in the 802.11r Fast Transition feature set of Cisco IOS Access Points (APs) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a corruption of certain timer mechanisms triggered by specific roaming events. This corruption will eventually cause a timer crash. An attacker could exploit this vulnerability by sending malicious reassociation events multiple times to the same AP in a short period of time, causing a DoS condition on the affected AP.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
未加控制的资源消耗(资源穷尽)
Source: NVD (National Vulnerability Database)
Vulnerability Title
Cisco IOS Access Points Software 安全漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Cisco IOS Access Points(APs)Software是美国思科(Cisco)公司的一套用于管理控制访问接入点设备的软件。 Cisco IOS APs Software中的802.11r Fast Transition feature set存在安全漏洞。物理位置邻近的攻击者可通过多次发送恶意的重新关联事件利用该漏洞造成拒绝服务。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Cisco | Cisco Aironet Access Point Software | n/a | - |
II. Public POCs for CVE-2018-0441
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2018-0441
Please Login to view more intelligence information
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20181017-ap-ft-dosvendor-advisoryx_refsource_CISCO
- https://nvd.nist.gov/vuln/detail/CVE-2018-0441
Same Patch Batch · Cisco · 2018-10-17 · 15 CVEs total
| CVE-2018-0388 | Cisco Wireless LAN Controller Software Cross-Site Scripting Vulnerability | |
| CVE-2018-0416 | Cisco Wireless LAN Controller Software Information Disclosure Vulnerability | |
| CVE-2018-0395 | Cisco FXOS and NX-OS Software Link Layer Discovery Protocol Denial of Service Vulnerabilit | |
| CVE-2018-0456 | Cisco NX-OS Software Authenticated Simple Network Management Protocol Denial of Service Vu | |
| CVE-2018-15395 | Cisco Wireless LAN Controller Software Privilege Escalation Vulnerability | |
| CVE-2018-15402 | Cisco Enterprise NFV Infrastructure Software Cross-Site Request Forgery Vulnerability | |
| CVE-2018-0378 | Cisco NX-OS Software for Nexus 5500, 5600, and 6000 Series Switches Precision Time Protoco | |
| CVE-2018-0417 | Cisco Wireless LAN Controller Software GUI Privilege Escalation Vulnerability | |
| CVE-2018-0381 | Cisco Aironet 1560, 1800, 2800, and 3800 Series Access Points Denial of Service Vulnerabil | |
| CVE-2018-0420 | Cisco Wireless LAN Controller Software Directory Traversal Vulnerability | |
| CVE-2018-0442 | Cisco Wireless LAN Controller Software Control and Provisioning of Wireless Access Points | |
| CVE-2018-0443 | Cisco Wireless LAN Controller Software Control and Provisioning of Wireless Access Points | |
| CVE-2018-15435 | Cisco SocialMiner Cross-Site Scripting Vulnerability | |
| CVE-2018-15438 | Cisco Prime Collaboration Assurance Cross-Site Request Forgery Vulnerability |
IV. Related Vulnerabilities
Same product: Cisco Aironet Access Point Software
Same vendor: Cisco
- CVE-2026-20219
Cisco Slido IDOR漏洞致用户隐私泄露 - CVE-2026-20034
Cisco Unity Connection Remote Code Execution Vulnerability - CVE-2026-20035
Cisco Unity Connection Server-Side Request Forgery Vulnerabi - CVE-2026-20167
Cisco IoT Field Network Director Remote Device Denial of Ser - CVE-2026-20169
Cisco IoT Field Network Director Command Injection Vulnerabi
Same weakness: CWE-400
- CVE-2026-8187
Open5GS UPF gtp-path.c _gtpv1_u_recv_cb resource consumption - CVE-2026-42343
FastGPT: Uncontrolled Resource Consumption leading to Sandbo - CVE-2026-42212
SolidCAM-GPPL-IDE: XML External Entity (XXE) and billion-lau - CVE-2026-32686
Unbounded exponent in decimal enables unauthenticated DoS - CVE-2026-20188
Cisco Crosswork Network Controller and Cisco Network Service
V. Comments for CVE-2018-0441
No comments yet