HIGH✓ PATCH🇬🇧 English

CVE-2021-34740

CVSS 7.4v3.1pub. 2021-09-23upd. 2024-11-21

A vulnerability in the WLAN Control Protocol (WCP) implementation for Cisco Aironet Access Point (AP) software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. This vulnerability is due to incorrect error handling when an affected device receives an unexpected 802.11 frame. An attacker could exploit this vulnerability by sending certain 802.11 frames over the wireless network to an interface on an affected AP. A successful exploit could allow the attacker to cause a packet buffer leak. This could eventually result in buffer allocation failures, which would trigger a reload of the affected device.

oryginał EN
CVSS Vector
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
  • Cisco 1100 4g\/6g Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 4p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 8p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1100 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1101 4p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1101 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1109 2p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1109 4p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1109 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1111x 8p Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1111x Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 111x Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1120 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 1160 Integrated Services Router

    HW
    Cisco
    wszystkie wersje
  • Cisco 6300 Series Access Points

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1540

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1542d

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1542i

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1560

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1562d

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1562e

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1562i

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1800

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1800i

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1810

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1810w

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1815

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1815i

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1830

    HW
    Cisco
    wszystkie wersje
  • Cisco Aironet 1830e

    HW
    Cisco
    wszystkie wersje
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
Tagi
DoS
CWE
Referencje

Powiązane podatności

CVE-2017-12240CRITICAL9.8⚠ KEVten sam produkt

The DHCP relay subsystem of Cisco IOS 12.2 through 15.6 and Cisco IOS XE Software contains a vulnerability tha...

CVE-2022-20695CRITICAL10.0ten sam produkt

A vulnerability in the authentication functionality of Cisco Wireless LAN Controller (WLC) Software could allo...

CVE-2021-34727CRITICAL9.8ten sam produkt

A vulnerability in the vDaemon process in Cisco IOS XE SD-WAN Software could allow an unauthenticated, remote ...

CVE-2019-15260CRITICAL9.8ten sam produkt

A vulnerability in Cisco Aironet Access Points (APs) Software could allow an unauthenticated, remote attacker ...

CVE-2017-3831CRITICAL9.8ten sam produkt

A vulnerability in the web-based GUI of Cisco Mobility Express 1800 Series Access Points could allow an unauth...