CVE-2024-20271
Published: Mar 27, 2024
Modified: Aug 1, 2024
CVSS v3.1
8.6
Description
A vulnerability in the IP packet processing of Cisco Access Point (AP) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation of certain IPv4 packets. An attacker could exploit this vulnerability by sending a crafted IPv4 packet either to or through an affected device. A successful exploit could allow the attacker to cause an affected device to reload unexpectedly, resulting in a DoS condition. To successfully exploit this vulnerability, the attacker does not need to be associated with the affected AP. This vulnerability cannot be exploited by sending IPv6 packets.
| Vendor | Product | Versions |
|---|---|---|
Cisco | Cisco Aironet Access Point Software | affected 8.2.100.0affected 8.2.130.0affected 8.2.111.0affected 8.2.110.0affected 8.2.121.0+98 more versions |
Cisco | Cisco Business Wireless Access Point Software | affected 10.0.1.0affected 10.0.2.0affected 10.1.1.0affected 10.1.2.0affected 10.2.1.0+74 more versions |
Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | affected 16.10.1eaffected 16.10.1affected 17.1.1taffected 17.1.1saffected 17.1.1+48 more versions |
Weaknesses (CWE)
CVSS v3.1 Details
CVSS v3.1 Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
References
Security Training
Train your team to recognize and prevent security threats with our comprehensive security awareness program.
Start TrainingVulnerability Scanning
Discover vulnerabilities in your applications and infrastructure before attackers do.
Scan Now