Zero Day MonitorZDM

← Back to list

8.6

CVE-2026-20086

Cisco · IOS XE Wireless Controller Software for the Catalyst CW9800 Family

A vulnerability in the processing of Control and Provisioning of Wireless Access Points (CAPWAP) packets of Cisco IOS XE Wireless Controller Software for the Catalyst CW9800 Family could allow an unau

Description

A vulnerability in the processing of Control and Provisioning of Wireless Access Points (CAPWAP) packets of Cisco IOS XE Wireless Controller Software for the Catalyst CW9800 Family could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to improper handling of a malformed CAPWAP packet. An attacker could exploit this vulnerability by sending a malformed CAPWAP packet to an affected device. A successful exploit could allow the attacker to cause the affected device to reload unexpectedly, resulting in a DoS condition.

Affected Products

Vendor	Product	Versions
Cisco	IOS XE Wireless Controller Software for the Catalyst CW9800 Family	—

References

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-wlc-dos-hnX5KGOm

Related News (2 articles)

Tier D

Heise Security4d ago

Angreifer können Cisco-Firewalls und WLAN-Controller lahmlegen

→ No new info (linked only)

Tier A

Cisco Security6d ago

Cisco IOS XE Wireless Controller Software for the Catalyst CW9800 Family CAPWAP Denial of Service Vulnerability

→ No new info (linked only)

CVSS 3.18.6 HIGH

VectorCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CISA KEV❌ No

Actively exploited❌ No

CWECWE-230

PublishedMar 25, 2026

Last enriched4d agov3

Trending Score22

Source articles2

Independent2

Info Completeness8/14

Missing: versions, epss, kev, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Related CVEs (5)

CRITICALCVE-2026-20131EXPKEV

A vulnerability in the web-based management interface of Cisco Secure Firewall Management Center (FMC) Software could allow an unauthenticated, remote attacker to execute arbitrary Java code as root&n

CRITICALCVE-2026-20127EXPKEV

A vulnerability in the peering authentication in Cisco Catalyst SD-WAN Controller, formerly SD-WAN vSmart, and Cisco Catalyst SD-WAN Manager, formerly SD-WAN vManage, could allow an unauthenticated, r

HIGHCVE-2026-20012

A vulnerability in the Internet Key Exchange version 2 (IKEv2) feature of Cisco IOS Software, Cisco IOS XE Software, Cisco Secure Firewall Adaptive Security Appliance (ASA) Software, and Cisco Secure

MEDIUMCVE-2026-20075

A vulnerability in the web-based management interface of Cisco Evolved Programmable Network Manager (EPNM) and Cisco Prime Infrastructure could allow an authenticated, remote attacker to conduct a sto

MEDIUMCVE-2026-20111

A vulnerability in the web-based management interface of Cisco Prime Infrastructure could allow an authenticated, remote attacker to conduct a stored cross-site scripting (XSS) attack against users of

Pin to Dashboard

Verification

State: verified

Confidence: 100%

Vulnerability Timeline

CVE Published

Mar 25, 2026

Exploit Available

Mar 26, 2026

Discovered by ZDM

Mar 26, 2026

Updated: vendor, product

Mar 27, 2026

Updated: exploitAvailable

Mar 27, 2026

Version History

v3

Last enriched 4d ago

v3Tier D4d ago

Updated exploit availability to true and actively exploited status to false.

exploitAvailable

via Heise Security

v2Tier D4d ago

Added vendor Cisco and product information for IOS XE Wireless Controller Software for the Catalyst CW9800 Family.

vendorproduct

via Heise Security

v15d ago

Initial creation