CVE-2021-34767

HIGH

Cisco IOS XE Wireless Controller Software - Unauthenticated Denial of Service via IPv6 Traffic Processing

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2021-34767. PoCs published by lukejenkins.

AI-analyzed exploit summary This repository provides a detailed technical description of CVE-2021-34767, a DoS vulnerability in Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers. It explains the root cause (logic error in IPv6 traffic processing) and references official advisories but lacks exploit code.

Description

A vulnerability in IPv6 traffic processing of Cisco IOS XE Wireless Controller Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, adjacent attacker to cause a Layer 2 (L2) loop in a configured VLAN, resulting in a denial of service (DoS) condition for that VLAN. The vulnerability is due to a logic error when processing specific link-local IPv6 traffic. An attacker could exploit this vulnerability by sending a crafted IPv6 packet that would flow inbound through the wired interface of an affected device. A successful exploit could allow the attacker to cause traffic drops in the affected VLAN, thus triggering the DoS condition.

Exploits (1)

nomisec WRITEUP

by lukejenkins · poc

https://github.com/lukejenkins/CVE-2021-34767

View Code ZIP pw:eip

This repository provides a detailed technical description of CVE-2021-34767, a DoS vulnerability in Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers. It explains the root cause (logic error in IPv6 traffic processing) and references official advisories but lacks exploit code.

Classification

Writeup 90%

Attack Type

Dos

Complexity

Moderate

Reliability

Theoretical

Target: Cisco IOS XE Software for Catalyst 9800 Series Wireless Controllers

No auth needed

Prerequisites: Adjacent network access to the target device · Ability to send crafted IPv6 packets

MITRE ATT&CK

T1499 - Endpoint Denial of Service

devstral-2 · analyzed Feb 18, 2026 Full analysis →

References (1)

Core 1

Core References

Vendor Advisory vendor-advisory x_refsource_cisco

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-ipv6-dos-NMYeCnZv

Scores

CVSS v3 7.4

EPSS 0.0076

EPSS Percentile 50.2%

Attack Vector ADJACENT_NETWORK

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CISA SSVC

Vulnrichment

Exploitation none

Automatable no

Technical Impact partial

Details

CWE

CWE-670

Status published

Products (50)

cisco/ios_xe

cisco/ios_xe 3.15.1xbs

cisco/ios_xe 3.15.2xbs

cisco/ios_xe 16.7.1

cisco/ios_xe 16.7.1a

cisco/ios_xe 16.7.1b

cisco/ios_xe 16.7.2

cisco/ios_xe 16.7.3

cisco/ios_xe 16.7.4

cisco/ios_xe 16.8.1

... and 40 more

Published Sep 23, 2021

Tracked Since Feb 18, 2026