HIGH✓ PATCH🇬🇧 English

CVE-2020-3560

CVSS 8.6v3.1pub. 2020-09-24upd. 2024-11-21

A vulnerability in Cisco Aironet Access Points (APs) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) on an affected device. The vulnerability is due to improper resource management while processing specific packets. An attacker could exploit this vulnerability by sending a series of crafted UDP packets to a specific port on an affected device. A successful exploit could either allow the attacker to tear down the connection between the AP and the wireless LAN controller, resulting in the affected device not being able to process client traffic, or cause the vulnerable device to reload, triggering a DoS condition. After the attack, the affected device should automatically recover its normal functions without manual intervention.

oryginał EN
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
  • Cisco 1111 4pwe

    HW
    Cisco
    wszystkie wersje
  • Cisco 1111 8plteeawb

    HW
    Cisco
    wszystkie wersje
  • Cisco 1111 8pwb

    HW
    Cisco
    wszystkie wersje
  • Cisco 1113 8plteeawe

    HW
    Cisco
    wszystkie wersje
  • Cisco 1113 8pmwe

    HW
    Cisco
    wszystkie wersje
  • Cisco 1113 8pwe

    HW
    Cisco
    wszystkie wersje
  • Cisco 1116 4plteeawe

    HW
    Cisco
    wszystkie wersje
  • Cisco 1116 4pwe

    HW
    Cisco
    wszystkie wersje
  • Cisco 1117 4plteeawe

    HW
    Cisco
    wszystkie wersje
  • Cisco 1117 4pmlteeawe

    HW
    Cisco
    wszystkie wersje
  • Cisco 1117 4pmwe

    HW
    Cisco
    wszystkie wersje
  • Cisco 1117 4pwe

    HW
    Cisco
    wszystkie wersje
  • Cisco Access Points

    OS
    Cisco
    < 16.12.4a
  • Cisco Aironet 1542d

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1542i

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1562d

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1562e

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1562i

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1815

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1830e

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1830i

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1850e

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1850i

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 2800e

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 2800i

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 3800e

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 3800i

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 3800p

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 4800

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet Access Point Software

    APP
    Cisco
    17.1.2.617.1.2.917.2.0.378.10\(105.0\)8.10\(105.4\)8.5\(154.27\)8.8\(125.0\)
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
DoS
CWE
Referencje

Powiązane podatności

CVE-2022-20695CRITICAL10.0ten sam produkt

A vulnerability in the authentication functionality of Cisco Wireless LAN Controller (WLC) Software could allo...

CVE-2021-34770CRITICAL10.0ten sam produkt

A vulnerability in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisc...

CVE-2019-15260CRITICAL9.8ten sam produkt

A vulnerability in Cisco Aironet Access Points (APs) Software could allow an unauthenticated, remote attacker ...

CVE-2017-3831CRITICAL9.8ten sam produkt

A vulnerability in the web-based GUI of Cisco Mobility Express 1800 Series Access Points could allow an unauth...

CVE-2016-1363CRITICAL9.8ten sam produkt

Buffer overflow in the redirection functionality in Cisco Wireless LAN Controller (WLC) Software 7.2 through 7...