{"resultsPerPage":1,"startIndex":0,"totalResults":1,"format":"NVD_CVE","version":"2.0","timestamp":"2026-04-23T13:39:05.647","vulnerabilities":[{"cve":{"id":"CVE-2021-34770","sourceIdentifier":"psirt@cisco.com","published":"2021-09-23T03:15:20.713","lastModified":"2025-10-30T21:16:34.240","vulnStatus":"Analyzed","cveTags":[],"descriptions":[{"lang":"en","value":"A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, remote attacker to execute arbitrary code with administrative privileges or cause a denial of service (DoS) condition on an affected device. The vulnerability is due to a logic error that occurs during the validation of CAPWAP packets. An attacker could exploit this vulnerability by sending a crafted CAPWAP packet to an affected device. A successful exploit could allow the attacker to execute arbitrary code with administrative privileges or cause the affected device to crash and reload, resulting in a DoS condition."},{"lang":"es","value":"Una vulnerabilidad en el procesamiento del protocolo Control and Provisioning of Wireless Access Points (CAPWAP) de Cisco IOS XE Software para Cisco Catalyst 9000 Family Wireless Controllers podría permitir a un atacante remoto no autenticado ejecutar código arbitrario con privilegios administrativos o causar una condición de denegación de servicio (DoS) en un dispositivo afectado. La vulnerabilidad es debido a un error lógico que se produce durante la comprobación de los paquetes CAPWAP. Un atacante podría explotar esta vulnerabilidad mediante el envío de un paquete CAPWAP diseñado a un dispositivo afectado. Una explotación con éxito podría permitir al atacante ejecutar código arbitrario con privilegios administrativos o causar que el dispositivo afectado se bloquee y se recargue, lo que resulta en una condición de DoS"}],"metrics":{"cvssMetricV31":[{"source":"psirt@cisco.com","type":"Secondary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H","baseScore":10.0,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"CHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":6.0},{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"3.1","vectorString":"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H","baseScore":9.8,"baseSeverity":"CRITICAL","attackVector":"NETWORK","attackComplexity":"LOW","privilegesRequired":"NONE","userInteraction":"NONE","scope":"UNCHANGED","confidentialityImpact":"HIGH","integrityImpact":"HIGH","availabilityImpact":"HIGH"},"exploitabilityScore":3.9,"impactScore":5.9}],"cvssMetricV2":[{"source":"nvd@nist.gov","type":"Primary","cvssData":{"version":"2.0","vectorString":"AV:N/AC:L/Au:S/C:C/I:C/A:C","baseScore":9.0,"accessVector":"NETWORK","accessComplexity":"LOW","authentication":"SINGLE","confidentialityImpact":"COMPLETE","integrityImpact":"COMPLETE","availabilityImpact":"COMPLETE"},"baseSeverity":"HIGH","exploitabilityScore":8.0,"impactScore":10.0,"acInsufInfo":false,"obtainAllPrivilege":false,"obtainUserPrivilege":false,"obtainOtherPrivilege":false,"userInteractionRequired":false}]},"weaknesses":[{"source":"psirt@cisco.com","type":"Secondary","description":[{"lang":"en","value":"CWE-122"}]},{"source":"nvd@nist.gov","type":"Primary","description":[{"lang":"en","value":"CWE-787"}]}],"configurations":[{"operator":"AND","nodes":[{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:-:*:*:*:*:*:*:*","matchCriteriaId":"B7D95E8A-8F0B-44E5-B266-09E10BAAEC55"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.15.1xbs:*:*:*:*:*:*:*","matchCriteriaId":"4BF22C29-84DF-44CA-B574-FE04AB39E344"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:3.15.2xbs:*:*:*:*:*:*:*","matchCriteriaId":"C2C7C0BA-D618-4B65-B42C-43393167EEE0"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.6.4s:*:*:*:*:*:*:*","matchCriteriaId":"3F35C623-6043-43A6-BBAA-478E185480CF"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.1:*:*:*:*:*:*:*","matchCriteriaId":"DB6BD18B-B9BD-452F-986E-16A6668E46B6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.1e:*:*:*:*:*:*:*","matchCriteriaId":"ADED0D82-2A4D-4235-BFAC-5EE2D862B652"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.10.1s:*:*:*:*:*:*:*","matchCriteriaId":"763664F5-E6CD-4936-B2F8-C5E2D5EA7BB6"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.1:*:*:*:*:*:*:*","matchCriteriaId":"E91F8704-6DAD-474A-84EA-04E4AF7BB9B1"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.1a:*:*:*:*:*:*:*","matchCriteriaId":"314C7763-A64D-4023-9F3F-9A821AE4151F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.1b:*:*:*:*:*:*:*","matchCriteriaId":"5820D71D-FC93-45AA-BC58-A26A1A39C936"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.1c:*:*:*:*:*:*:*","matchCriteriaId":"FC1C85DD-69CC-4AA8-B219-651D57FC3506"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.11.2:*:*:*:*:*:*:*","matchCriteriaId":"B53E377A-0296-4D7A-B97C-576B0026543D"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1:*:*:*:*:*:*:*","matchCriteriaId":"C98DED36-D4B5-48D6-964E-EEEE97936700"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1s:*:*:*:*:*:*:*","matchCriteriaId":"9027A528-2588-4C06-810B-5BB313FE4323"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.1t:*:*:*:*:*:*:*","matchCriteriaId":"7745ED34-D59D-49CC-B174-96BCA03B3374"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.2s:*:*:*:*:*:*:*","matchCriteriaId":"1986DB1F-AD0A-42FE-8EC8-F18BA1AD4F99"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.2t:*:*:*:*:*:*:*","matchCriteriaId":"3C6FB4DC-814D-49D2-BBE2-3861AE985A1C"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.3:*:*:*:*:*:*:*","matchCriteriaId":"D5750264-2990-4942-85F4-DB9746C5CA2B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.3s:*:*:*:*:*:*:*","matchCriteriaId":"B9173AD6-6658-4267-AAA7-D50D0B657528"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.4:*:*:*:*:*:*:*","matchCriteriaId":"7F02EE9D-45B1-43D6-B05D-6FF19472216B"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:16.12.4a:*:*:*:*:*:*:*","matchCriteriaId":"1C1DBBCD-4C5A-43BB-8FB0-6F1AF99ED0D2"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.1.1:*:*:*:*:*:*:*","matchCriteriaId":"E306B09C-CB48-4067-B60C-5F738555EEAC"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.1.1s:*:*:*:*:*:*:*","matchCriteriaId":"4FF0DD16-D76A-45EA-B01A-20C71AEFA3B4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.1.1t:*:*:*:*:*:*:*","matchCriteriaId":"4BDD0CEC-4A19-438D-B2A1-8664A1D8F3C4"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.1.2:*:*:*:*:*:*:*","matchCriteriaId":"89369318-2E83-489F-B872-5F2E247BBF8F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.1.3:*:*:*:*:*:*:*","matchCriteriaId":"8B4D4659-A304-459F-8AB3-ED6D84B44C0F"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.2.1:*:*:*:*:*:*:*","matchCriteriaId":"4B7EE7C7-D6C1-4C35-8C80-EAF3FC7E7EFA"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.2.1a:*:*:*:*:*:*:*","matchCriteriaId":"B51FA707-8DB1-4596-9122-D4BFEF17F400"},{"vulnerable":true,"criteria":"cpe:2.3:o:cisco:ios_xe:17.3.1:*:*:*:*:*:*:*","matchCriteriaId":"128F95D7-E49F-4B36-8F47-823C0298449E"}]},{"operator":"OR","negate":false,"cpeMatch":[{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_9800:-:*:*:*:*:*:*:*","matchCriteriaId":"A48E6CF0-7A3B-4D11-8D02-0CD38F2420E9"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_9800-40:-:*:*:*:*:*:*:*","matchCriteriaId":"1B9ED0E5-CB20-4106-9CF2-8EB587B33543"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_9800-40_wireless_controller:-:*:*:*:*:*:*:*","matchCriteriaId":"8E283C34-43AE-49A5-A72B-32DEA185ABD3"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_9800-80:-:*:*:*:*:*:*:*","matchCriteriaId":"2B0E620C-8E09-4F7C-A326-26013173B993"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_9800-80_wireless_controller:-:*:*:*:*:*:*:*","matchCriteriaId":"ADB3AF13-5324-42CD-8EDB-6F730BF46214"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_9800-cl:-:*:*:*:*:*:*:*","matchCriteriaId":"FF93F1C8-669F-4ECB-8D81-ECDA7B550175"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_9800-l:-:*:*:*:*:*:*:*","matchCriteriaId":"2E0BA345-B7D7-4975-9199-4DC7875BBFD0"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_9800-l-c:-:*:*:*:*:*:*:*","matchCriteriaId":"4E9EA95F-4E39-4D9C-8A84-D1F6014A4A40"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_9800-l-f:-:*:*:*:*:*:*:*","matchCriteriaId":"EA0BC769-C244-41BD-BE80-E67F4E1CDDA4"},{"vulnerable":false,"criteria":"cpe:2.3:h:cisco:catalyst_9800_embedded_wireless_controller:-:*:*:*:*:*:*:*","matchCriteriaId":"78706517-83F4-4D44-A6EC-B78ADCEABAC0"}]}]}],"references":[{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-capwap-rce-LYgj8Kf","source":"psirt@cisco.com","tags":["Vendor Advisory"]},{"url":"https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-capwap-rce-LYgj8Kf","source":"af854a3a-2127-422b-91ae-364da2661108","tags":["Vendor Advisory"]}]}}]}