Cyber Resilience

NIST 800-53 r5 · Controls catalogue · Family AC

AC-18Wireless Access

Establish configuration requirements, connection requirements, and implementation guidance for each type of wireless access; and Authorize each type of wireless access to the system prior to allowing such connections.

Last updated: 04 July 2026 00:28 UTC

Cumulative inbound coverage

How completely the frameworks we cross-walk collectively cover this — the verdict is the strongest single mapping (overlapping partials are not summed); breadth shows the corroboration behind it.

Collective: partial · 2 mapping(s) from 1 framework(s): CSF 2.0 2 (partial)

See the full cumulative-coverage rollup →

Implementations targeting this control (0)

ATT&CK techniques this control mitigates (25)

Weaknesses this control addresses (5)AI

CWEs ranked by how often they appear in real CVEs. The rationale describes how this control reduces exploitability of each weakness class.

CWE Name CVEs Why this control addresses it
CWE-862Missing Authorization9,346Mandating authorization before wireless connections are allowed prevents missing authorization for wireless access.
CWE-284Improper Access Control5,367Requiring authorization of wireless access before allowing connections enforces proper access control for this access method.
CWE-863Incorrect Authorization3,515Establishing configuration and connection requirements helps ensure correct rather than incorrect authorization for wireless access.
CWE-285Improper Authorization1,356The control explicitly requires authorization of each wireless access type prior to permitting connections.
CWE-923Improper Restriction of Communication Channel to Intended Endpoints61Authorizing wireless access restricts the wireless communication channel to only intended endpoints.

Top CVEs where this control is the strongest mitigation

CVE Risk CVSS EPSS Match
CVE-2025-143467.09.80.0549good
CVE-2025-301397.09.80.0039good
CVE-2024-523257.09.60.0298good
CVE-2025-699697.09.60.0046good
CVE-2022-201457.09.80.0645good
CVE-2025-658245.58.80.0049good
CVE-2024-347305.57.80.0008good
CVE-2024-201535.57.50.0032good
CVE-2025-698225.57.40.0034good
CVE-2025-369115.57.10.0694good
CVE-2024-25735 UPD8.09.10.5062good
CVE-2025-655527.09.80.0040good
CVE-2025-206467.09.80.0084partial
CVE-2025-633537.09.80.0119good
CVE-2025-301157.09.80.0041good
CVE-2025-30133 UPD7.09.80.0050good
CVE-2023-277467.09.80.0175good
CVE-2024-00397.09.80.0151partial
CVE-2024-201545.58.80.0394partial
CVE-2025-301065.58.80.0026good
CVE-2026-314085.58.80.0030partial
CVE-2026-42725.58.10.0045good
CVE-2025-301425.58.10.0027good
CVE-2024-88935.57.30.0027partial
CVE-2026-260485.57.50.0026good

Other controls in family AC

AC-1 AC-10 AC-11 AC-12 AC-13 AC-14 AC-15 AC-16 AC-17 AC-19 AC-2 AC-20 AC-21 AC-22 AC-23 AC-24 AC-25 AC-3 AC-4 AC-5 AC-6 AC-7 AC-8 AC-9