WID-SEC-W-2025-2121

Vulnerability from csaf_certbund - Published: 2025-09-24 22:00 - Updated: 2025-09-24 22:00
Summary
Cisco Aironet Access Point: Schwachstelle ermöglicht Manipulation
Severity
Niedrig
Notes
Das BSI ist als Anbieter für die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch dafür verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgfältig im Einzelfall zu prüfen.
Produktbeschreibung: Aironet Access Point ist eine WLAN Access Point Produktreihe von Cisco Cisco Wireless Access Point bezeichnet eine Produktfamilie von WLAN Zugriffspunkten von Cisco. Catalyst ist der Markenname für eine Vielzahl von Netzwerk-Switches die von Cisco Systems verkauft werden.
Angriff: Ein Angreifer aus einem angrenzenden Netzwerk kann eine Schwachstelle in Cisco Aironet Access Point, Cisco Wireless Access Point und Cisco Catalyst ausnutzen, um Daten zu manipulieren
Betroffene Betriebssysteme: - CISCO Appliance
CVE-2025-20365
Affected products
Product Identifier Version Remediation
Cisco Aironet Access Point 3800
Cisco / Aironet Access Point
 cpe:/o:cisco:aironet_access_point_software:3800_series_aps 3800
Cisco Aironet Access Point 1800
Cisco / Aironet Access Point
 cpe:/o:cisco:aironet_access_point_software:1800_series_aps 1800
Cisco Aironet Access Point 9100
Cisco / Aironet Access Point
 cpe:/o:cisco:aironet_access_point_software:9100_aps 9100
Cisco Aironet Access Point 2800
Cisco / Aironet Access Point
 cpe:/o:cisco:aironet_access_point_software:2800_series 2800
Cisco Aironet Access Point 1560
Cisco / Aironet Access Point
 cpe:/o:cisco:aironet_access_point_software:1560_series 1560
Cisco Aironet Access Point 1540
Cisco / Aironet Access Point
 cpe:/o:cisco:aironet_access_point_software:1540_series_aps 1540
Cisco Wireless Access Point 1100
Cisco / Wireless Access Point
 cpe:/h:cisco:wap:1100 1100
Cisco Catalyst IW6300
Cisco / Catalyst
 cpe:/h:cisco:catalyst:iw6300_heay_duty_series_access_point IW6300
Cisco Wireless Access Point 6300
Cisco / Wireless Access Point
 cpe:/h:cisco:wap:esw6300 6300
Cisco Catalyst 9100
Cisco / Catalyst
 cpe:/h:cisco:catalyst:9100 9100
Cisco Aironet Access Point 4800
Cisco / Aironet Access Point
 cpe:/o:cisco:aironet_access_point_software:4800_series 4800
References
To clipboard 

{
  "document": {
    "aggregate_severity": {
      "text": "niedrig"
    },
    "category": "csaf_base",
    "csaf_version": "2.0",
    "distribution": {
      "tlp": {
        "label": "WHITE",
        "url": "https://www.first.org/tlp/"
      }
    },
    "lang": "de-DE",
    "notes": [
      {
        "category": "legal_disclaimer",
        "text": "Das BSI ist als Anbieter f\u00fcr die eigenen, zur Nutzung bereitgestellten Inhalte nach den allgemeinen Gesetzen verantwortlich. Nutzerinnen und Nutzer sind jedoch daf\u00fcr verantwortlich, die Verwendung und/oder die Umsetzung der mit den Inhalten bereitgestellten Informationen sorgf\u00e4ltig im Einzelfall zu pr\u00fcfen."
      },
      {
        "category": "description",
        "text": "Aironet Access Point ist eine WLAN Access Point Produktreihe von Cisco\r\nCisco Wireless Access Point bezeichnet eine Produktfamilie von WLAN Zugriffspunkten von Cisco.\r\nCatalyst ist der Markenname f\u00fcr eine Vielzahl von Netzwerk-Switches die von Cisco Systems verkauft werden.",
        "title": "Produktbeschreibung"
      },
      {
        "category": "summary",
        "text": "Ein Angreifer aus einem angrenzenden Netzwerk kann eine Schwachstelle in Cisco Aironet Access Point, Cisco Wireless Access Point und Cisco Catalyst ausnutzen, um Daten zu manipulieren",
        "title": "Angriff"
      },
      {
        "category": "general",
        "text": "- CISCO Appliance",
        "title": "Betroffene Betriebssysteme"
      }
    ],
    "publisher": {
      "category": "other",
      "contact_details": "csaf-provider@cert-bund.de",
      "name": "Bundesamt f\u00fcr Sicherheit in der Informationstechnik",
      "namespace": "https://www.bsi.bund.de"
    },
    "references": [
      {
        "category": "self",
        "summary": "WID-SEC-W-2025-2121 - CSAF Version",
        "url": "https://wid.cert-bund.de/.well-known/csaf/white/2025/wid-sec-w-2025-2121.json"
      },
      {
        "category": "self",
        "summary": "WID-SEC-2025-2121 - Portal Version",
        "url": "https://wid.cert-bund.de/portal/wid/securityadvisory?name=WID-SEC-2025-2121"
      },
      {
        "category": "external",
        "summary": "Cisco Security Advisory cisco-sa-ap-ipv6-gw-tUAzpn9O vom 2025-09-24",
        "url": "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-ipv6-gw-tUAzpn9O"
      }
    ],
    "source_lang": "en-US",
    "title": "Cisco Aironet Access Point: Schwachstelle erm\u00f6glicht Manipulation",
    "tracking": {
      "current_release_date": "2025-09-24T22:00:00.000+00:00",
      "generator": {
        "date": "2025-09-25T06:31:15.376+00:00",
        "engine": {
          "name": "BSI-WID",
          "version": "1.4.0"
        }
      },
      "id": "WID-SEC-W-2025-2121",
      "initial_release_date": "2025-09-24T22:00:00.000+00:00",
      "revision_history": [
        {
          "date": "2025-09-24T22:00:00.000+00:00",
          "number": "1",
          "summary": "Initiale Fassung"
        }
      ],
      "status": "final",
      "version": "1"
    }
  },
  "product_tree": {
    "branches": [
      {
        "branches": [
          {
            "branches": [
              {
                "category": "product_version",
                "name": "1560",
                "product": {
                  "name": "Cisco Aironet Access Point 1560",
                  "product_id": "T020457",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:cisco:aironet_access_point_software:1560_series"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "2800",
                "product": {
                  "name": "Cisco Aironet Access Point 2800",
                  "product_id": "T020458",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:cisco:aironet_access_point_software:2800_series"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "4800",
                "product": {
                  "name": "Cisco Aironet Access Point 4800",
                  "product_id": "T020460",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:cisco:aironet_access_point_software:4800_series"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "1540",
                "product": {
                  "name": "Cisco Aironet Access Point 1540",
                  "product_id": "T033729",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:cisco:aironet_access_point_software:1540_series_aps"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "1800",
                "product": {
                  "name": "Cisco Aironet Access Point 1800",
                  "product_id": "T033731",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:cisco:aironet_access_point_software:1800_series_aps"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "3800",
                "product": {
                  "name": "Cisco Aironet Access Point 3800",
                  "product_id": "T033733",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:cisco:aironet_access_point_software:3800_series_aps"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9100",
                "product": {
                  "name": "Cisco Aironet Access Point 9100",
                  "product_id": "T033736",
                  "product_identification_helper": {
                    "cpe": "cpe:/o:cisco:aironet_access_point_software:9100_aps"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Aironet Access Point"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "IW6300",
                "product": {
                  "name": "Cisco Catalyst IW6300",
                  "product_id": "T020462",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:cisco:catalyst:iw6300_heay_duty_series_access_point"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "9100",
                "product": {
                  "name": "Cisco Catalyst 9100",
                  "product_id": "T047157",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:cisco:catalyst:9100"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Catalyst"
          },
          {
            "branches": [
              {
                "category": "product_version",
                "name": "6300",
                "product": {
                  "name": "Cisco Wireless Access Point 6300",
                  "product_id": "T024707",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:cisco:wap:esw6300"
                  }
                }
              },
              {
                "category": "product_version",
                "name": "1100",
                "product": {
                  "name": "Cisco Wireless Access Point 1100",
                  "product_id": "T047156",
                  "product_identification_helper": {
                    "cpe": "cpe:/h:cisco:wap:1100"
                  }
                }
              }
            ],
            "category": "product_name",
            "name": "Wireless Access Point"
          }
        ],
        "category": "vendor",
        "name": "Cisco"
      }
    ]
  },
  "vulnerabilities": [
    {
      "cve": "CVE-2025-20365",
      "product_status": {
        "known_affected": [
          "T033733",
          "T033731",
          "T033736",
          "T020458",
          "T020457",
          "T033729",
          "T047156",
          "T020462",
          "T024707",
          "T047157",
          "T020460"
        ]
      },
      "release_date": "2025-09-24T22:00:00.000+00:00",
      "title": "CVE-2025-20365"
    }
  ]
}


Log in or create an account to share your comment.




Tags
Taxonomy of the tags.




Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.

Sightings

Author Source Type Date Other

Nomenclature

  • Seen: The vulnerability was mentioned, discussed, or observed by the user.
  • Confirmed: The vulnerability has been validated from an analyst's perspective.
  • Published Proof of Concept: A public proof of concept is available for this vulnerability.
  • Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
  • Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
  • Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
  • Not confirmed: The user expressed doubt about the validity of the vulnerability.
  • Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.



Detection rules are retrieved from Rulezet.