VULHUB ™

Cisco Aironet Access Points that are running Cisco IOS have been reported prone to an information disclosure vulnerability that could lead to the disclosure of wired equivalent privacy (WEP) keys. The issue has been reported to exist if the 'snmp-server enable traps wlan-wep' command has been set. The issue presents itself because when this functionality is enabled the Cisco Aironet Access Point will send the WEP key in a plain text format to the simple network management protocol server.

Cisco Aironet Access Points that are running Cisco IOS have been reported prone to an information disclosure vulnerability that could lead to the disclosure of wired equivalent privacy (WEP) keys. The issue has been reported to exist if the 'snmp-server enable traps wlan-wep' command has been set. The issue presents itself because when this functionality is enabled the Cisco Aironet Access Point will send the WEP key in a plain text format to the simple network management protocol server.