Cisco Aironet 1562e/i/d/ps, 2802e/i, 3802e/i/p, 4800 and IW6300H- AC/DC/DCW Wireless LAN Access Points, AireOS Version 8.10MR3 and IOS-XE 17.3

Known vulnerabilities detected

Our automated heuristics have identified vulnerabilities that may be associated with this certificate. See the CVEs section for details.

Certificate #4129

Webpage information

Status active
Validation dates 10.01.2022 , 05.07.2022 , 06.01.2023
Sunset date 21-09-2026
Standard FIPS 140-2
Security level 2
Type Hardware
Embodiment Multi-Chip Stand Alone
Caveat The tamper evident seals installed as indicated in the security policy.
Exceptions
  • Mitigation of Other Attacks: N/A
Description Cisco Aironet Series Wireless Access Points provide highly secure and reliable wireless connections for both indoor and outdoor environments.
Version (Hardware) 1562e, 1562i, 1562d, 1562ps, 2802e, 2802i, 3802e, 3802i, 3802p, 4800, IW6300H-AC, IW6300H-DC and IW6300H-DCW with FIPS Kit: AIR-AP-FIPSKIT=
Version (Firmware) AireOS 8.10.130 and IOS-XE 17.3
Vendor Cisco Systems, Inc.
References

This certificate's webpage directly references 0 certificates, transitively this expands into 0 certificates.
Certificate
Webpage

Security policy

Security target PDF TXT

Symmetric Algorithms
AES, AES-, HMAC, HMAC-SHA-256
Asymmetric Algorithms
RSA 2048, ECDH, ECDSA, ECC, DH, Diffie-Hellman
Hash functions
SHA-1, SHA1, SHA-512, SHA-256, SHA-384, SHA-224, SHA256, SHA384, SHA512
Schemes
Key Agreement
Protocols
TLS, TLSv1.2, DTLS
Randomness
DRBG
Elliptic Curves
P-256, P-384, P-521
Block cipher modes
CBC, GCM

Trusted Execution Environments
SSC
Vendor
Cisco Systems, Inc, Cisco, Cisco Systems

Security level
Level 2, Level 1, level 2

Standards
FIPS 140-2, FIPS PUB 140-2, FIPS 140, FIPS 186-4, SP 800-90A, SP 800-133, SP 800-135, SP 800-52, PKCS1, PKCS 1, RFC 5288

File metadata

Author Nick Goble
Creation date D:20221115180712+05'30'
Modification date D:20221115180712+05'30'
Pages 52
Creator Microsoft® Word for Microsoft 365
Producer Microsoft® Word for Microsoft 365

Heuristics

Automated inference - use with caution

All attributes shown in this section (e.g., links between certificates, products, vendors, and known CVEs) are generated by automated heuristics and have not been reviewed by humans. These methods can produce false positives or false negatives and should not be treated as definitive without independent verification. For details on our data sources and inference methods, see our methodology. If you believe any information here is inaccurate or harmful, please submit feedback.

Related CVEs

ID Links Severity CVSS Score Published on
Base Exploitability Impact
CVE-2019-12660
C N
MEDIUM 5.5 3.6 25.09.2019
CVE-2021-1382
C N
MEDIUM 6.7 5.9 24.03.2021
CVE-2021-1616
C N
MEDIUM 4.7 1.4 23.09.2021
CVE-2021-1625
C N
MEDIUM 5.8 1.4 23.09.2021
CVE-2021-34729
C N
MEDIUM 6.7 5.9 23.09.2021
CVE-2022-20920
C N
HIGH 7.7 4.0 10.10.2022
CVE-2023-20056
C N
MEDIUM 5.5 3.6 23.03.2023
CVE-2023-20076
C N
HIGH 8.8 5.9 12.02.2023
CVE-2023-20097
C N
MEDIUM 6.7 5.9 23.03.2023
CVE-2023-20198
C N
CRITICAL 10.0 6.0 16.10.2023
CVE-2023-20273
C N
HIGH 7.2 5.9 25.10.2023
CVE-2023-44487
C N
HIGH 7.5 3.6 10.10.2023
CVE-2024-20271
C N
HIGH 8.6 4.0 27.03.2024
Showing 5 out of 13.

References

No references are available for this certificate.

Updates

  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate data changed.
  • The certificate was first processed.

Raw data 

{
  "_type": "sec_certs.sample.fips.FIPSCertificate",
  "cert_id": 4129,
  "dgst": "3c365ff931ecb0e3",
  "heuristics": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.Heuristics",
    "algorithms": {
      "_type": "Set",
      "elements": [
        "KTS#3783",
        "AES#5682",
        "DRBG#2298",
        "RSA#3057",
        "KBKDF#238",
        "SHS#3576",
        "RSA#2344",
        "HMAC#3783",
        "KTS#5682",
        "ECDSA#1539",
        "CVL#2074",
        "SHS#4554"
      ]
    },
    "cpe_matches": {
      "_type": "Set",
      "elements": [
        "cpe:2.3:o:cisco:ios_xe:17.3:*:*:*:*:*:*:*"
      ]
    },
    "direct_transitive_cves": null,
    "extracted_versions": {
      "_type": "Set",
      "elements": [
        "17.3",
        "8.10",
        "8.10.130"
      ]
    },
    "indirect_transitive_cves": null,
    "module_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "module_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "policy_processed_references": {
      "_type": "sec_certs.sample.certificate.References",
      "directly_referenced_by": null,
      "directly_referencing": null,
      "indirectly_referenced_by": null,
      "indirectly_referencing": null
    },
    "policy_prunned_references": {
      "_type": "Set",
      "elements": []
    },
    "related_cves": {
      "_type": "Set",
      "elements": [
        "CVE-2021-34729",
        "CVE-2023-20198",
        "CVE-2023-20273",
        "CVE-2021-1625",
        "CVE-2023-20097",
        "CVE-2021-1616",
        "CVE-2021-1382",
        "CVE-2023-44487",
        "CVE-2023-20076",
        "CVE-2022-20920",
        "CVE-2023-20056",
        "CVE-2019-12660",
        "CVE-2024-20271"
      ]
    },
    "verified_cpe_matches": null
  },
  "pdf_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.PdfData",
    "keywords": {
      "asymmetric_crypto": {
        "ECC": {
          "ECC": {
            "ECC": 2
          },
          "ECDH": {
            "ECDH": 1
          },
          "ECDSA": {
            "ECDSA": 4
          }
        },
        "FF": {
          "DH": {
            "DH": 8,
            "Diffie-Hellman": 12
          }
        },
        "RSA": {
          "RSA 2048": 3
        }
      },
      "certification_process": {},
      "cipher_mode": {
        "CBC": {
          "CBC": 3
        },
        "GCM": {
          "GCM": 5
        }
      },
      "cplc_data": {},
      "crypto_engine": {},
      "crypto_library": {},
      "crypto_protocol": {
        "TLS": {
          "DTLS": {
            "DTLS": 31
          },
          "TLS": {
            "TLS": 8,
            "TLSv1.2": 1
          }
        }
      },
      "crypto_scheme": {
        "KA": {
          "Key Agreement": 1
        }
      },
      "device_model": {},
      "ecc_curve": {
        "NIST": {
          "P-256": 16,
          "P-384": 16,
          "P-521": 10
        }
      },
      "eval_facility": {},
      "fips_cert_id": {
        "Cert": {
          "#1": 1,
          "#2074": 2,
          "#3783": 1,
          "#5682": 2
        }
      },
      "fips_certlike": {
        "Certlike": {
          "AES Cert. #5682": 2,
          "AES- 256": 1,
          "AES-GCM 128 and 256": 1,
          "HMAC Cert. #3783": 2,
          "HMAC SHA-1": 2,
          "HMAC SHA-256": 1,
          "HMAC SHA-384": 1,
          "HMAC SHA-512": 1,
          "HMAC- SHA1": 2,
          "HMAC- SHA256": 2,
          "HMAC- SHA384": 2,
          "HMAC- SHA512": 1,
          "HMAC-SHA-256 238": 2,
          "PKCS 1": 2,
          "PKCS1": 4,
          "RSA 2048": 3,
          "RSA2": 1,
          "SHA- 256": 7,
          "SHA- 384": 2,
          "SHA- 512": 1,
          "SHA-1": 6,
          "SHA-224": 2,
          "SHA-256": 9,
          "SHA-384": 13,
          "SHA-512": 17,
          "SHA-512 1539": 1,
          "SHA-512 3783": 1,
          "SHA-512 4554": 1,
          "SHA1": 2,
          "SHA256": 2,
          "SHA384": 2,
          "SHA512": 1
        }
      },
      "fips_security_level": {
        "Level": {
          "Level 1": 1,
          "Level 2": 2,
          "level 2": 3
        }
      },
      "hash_function": {
        "SHA": {
          "SHA1": {
            "SHA-1": 6,
            "SHA1": 2
          },
          "SHA2": {
            "SHA-224": 2,
            "SHA-256": 9,
            "SHA-384": 13,
            "SHA-512": 20,
            "SHA256": 2,
            "SHA384": 2,
            "SHA512": 1
          }
        }
      },
      "ic_data_group": {},
      "javacard_api_const": {},
      "javacard_packages": {},
      "javacard_version": {},
      "os_name": {},
      "pq_crypto": {},
      "randomness": {
        "PRNG": {
          "DRBG": 26
        }
      },
      "side_channel_analysis": {},
      "standard_id": {
        "FIPS": {
          "FIPS 140": 1,
          "FIPS 140-2": 15,
          "FIPS 186-4": 1,
          "FIPS PUB 140-2": 1
        },
        "NIST": {
          "SP 800-133": 1,
          "SP 800-135": 2,
          "SP 800-52": 1,
          "SP 800-90A": 14
        },
        "PKCS": {
          "PKCS 1": 1,
          "PKCS1": 2
        },
        "RFC": {
          "RFC 5288": 1
        }
      },
      "symmetric_crypto": {
        "AES_competition": {
          "AES": {
            "AES": 13,
            "AES-": 1
          }
        },
        "constructions": {
          "MAC": {
            "HMAC": 6,
            "HMAC-SHA-256": 1
          }
        }
      },
      "tee_name": {
        "IBM": {
          "SSC": 4
        }
      },
      "tls_cipher_suite": {},
      "vendor": {
        "Cisco": {
          "Cisco": 58,
          "Cisco Systems": 2,
          "Cisco Systems, Inc": 52
        }
      },
      "vulnerability": {}
    },
    "policy_metadata": {
      "/Author": "Nick Goble",
      "/CreationDate": "D:20221115180712+05\u002730\u0027",
      "/Creator": "Microsoft\u00ae Word for Microsoft 365",
      "/ModDate": "D:20221115180712+05\u002730\u0027",
      "/Producer": "Microsoft\u00ae Word for Microsoft 365",
      "pdf_file_size_bytes": 2105116,
      "pdf_hyperlinks": {
        "_type": "Set",
        "elements": [
          "https://csrc.nist.gov/groups/STM/index.html",
          "http://www.cisco.com/",
          "https://csrc.nist.gov/groups/STM/cmvp/validation.html"
        ]
      },
      "pdf_is_encrypted": false,
      "pdf_number_of_pages": 52
    }
  },
  "state": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.InternalState",
    "module_download_ok": true,
    "module_extract_ok": true,
    "policy_convert_ok": true,
    "policy_download_ok": true,
    "policy_extract_ok": true,
    "policy_json_hash": null,
    "policy_pdf_hash": "303965660db170405adae9da7a441821ef483c57e354d8195f17ae28261b8dc8",
    "policy_txt_hash": "159eb42ccb8cf8f4c2e9d2310abdec062d12bdf09d3d9da3faf67e7ad1510c36"
  },
  "web_data": {
    "_type": "sec_certs.sample.fips.FIPSCertificate.WebData",
    "caveat": "The tamper evident seals installed as indicated in the security policy.",
    "certificate_pdf_url": "https://csrc.nist.gov/CSRC/media/projects/cryptographic-module-validation-program/documents/certificates/January 2022_010222_0702_signed.pdf",
    "date_sunset": "2026-09-21",
    "description": "Cisco Aironet Series Wireless Access Points provide highly secure and reliable wireless connections for both indoor and outdoor environments.",
    "embodiment": "Multi-Chip Stand Alone",
    "exceptions": [
      "Mitigation of Other Attacks: N/A"
    ],
    "fw_versions": "AireOS 8.10.130 and IOS-XE 17.3",
    "historical_reason": null,
    "hw_versions": "1562e, 1562i, 1562d, 1562ps, 2802e, 2802i, 3802e, 3802i, 3802p, 4800, IW6300H-AC, IW6300H-DC and IW6300H-DCW with FIPS Kit: AIR-AP-FIPSKIT=",
    "level": 2,
    "mentioned_certs": {},
    "module_name": "Cisco Aironet 1562e/i/d/ps, 2802e/i, 3802e/i/p, 4800 and IW6300H- AC/DC/DCW Wireless LAN Access Points, AireOS Version 8.10MR3 and IOS-XE 17.3",
    "module_type": "Hardware",
    "revoked_link": null,
    "revoked_reason": null,
    "standard": "FIPS 140-2",
    "status": "active",
    "sw_versions": null,
    "tested_conf": null,
    "validation_history": [
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2022-01-10",
        "lab": "Acumen Security",
        "validation_type": "Initial"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2022-07-05",
        "lab": "Acumen Security",
        "validation_type": "Update"
      },
      {
        "_type": "sec_certs.sample.fips.FIPSCertificate.ValidationHistoryEntry",
        "date": "2023-01-06",
        "lab": "Acumen Security",
        "validation_type": "Update"
      }
    ],
    "vendor": "Cisco Systems, Inc.",
    "vendor_url": "http://www.cisco.com"
  }
}