Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2020-3560

A vulnerability in Cisco Aironet Access Points (APs) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) on an affected device. The vulnerability is due to improper resource management while processing specific packets. An attacker could exploit this vulnerability by sending a series of crafted UDP packets to a specific port on an affected device. A successful exploit could either allow the attacker to tear down the connection between the AP and the wireless LAN controller, resulting in the affected device not being able to process client traffic, or cause the vulnerable device to reload, triggering a DoS condition. After the attack, the affected device should automatically recover its normal functions without manual intervention.

Published

2020-09-24T18:15:22.137

Last Modified

2024-11-21T05:31:19.017

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 8.6 (HIGH)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:N/I:N/A:C

  • Access Vector: NETWORK
  • Access Complexity: LOW
  • Authentication: NONE
  • Confidentiality Impact: NONE
  • Integrity Impact: NONE
  • Availability Impact: COMPLETE
Exploitability Score

10.0

Impact Score

6.9

Weaknesses
  • Type: Secondary
    CWE-400
  • Type: Primary
    CWE-400
Affected Vendors & Products
Type Vendor Product Version/Range Vulnerable?
Operating System cisco wireless_lan_controller < 8.10.112.0 Yes
Operating System cisco wireless_lan_controller_software < 8.5.161.0 Yes
Operating System cisco wireless_lan_controller_software < 8.8.130.0 Yes
Hardware cisco 1111-4pwe - No
Hardware cisco 1111-8plteeawb - No
Hardware cisco 1111-8pwb - No
Hardware cisco 1113-8plteeawe - No
Hardware cisco 1113-8pmwe - No
Hardware cisco 1113-8pwe - No
Hardware cisco 1116-4plteeawe - No
Hardware cisco 1116-4pwe - No
Hardware cisco 1117-4plteeawe - No
Hardware cisco 1117-4pmlteeawe - No
Hardware cisco 1117-4pmwe - No
Hardware cisco 1117-4pwe - No
Hardware cisco aironet_1542d - No
Hardware cisco aironet_1542i - No
Hardware cisco aironet_1562d - No
Hardware cisco aironet_1562e - No
Hardware cisco aironet_1562i - No
Hardware cisco aironet_1815 - No
Hardware cisco aironet_1830e - No
Hardware cisco aironet_1830i - No
Hardware cisco aironet_1850e - No
Hardware cisco aironet_1850i - No
Hardware cisco aironet_2800e - No
Hardware cisco aironet_2800i - No
Hardware cisco aironet_3800e - No
Hardware cisco aironet_3800i - No
Hardware cisco aironet_3800p - No
Hardware cisco aironet_4800 - No
Hardware cisco business_140ac - No
Hardware cisco business_145ac - No
Hardware cisco business_240ac - No
Hardware cisco catalyst_9105 - No
Hardware cisco catalyst_9115 - No
Hardware cisco catalyst_9117 - No
Hardware cisco catalyst_9120 - No
Hardware cisco catalyst_9130 - No
Hardware cisco catalyst_iw6300 - No
Hardware cisco esw-6300-con-x-k9 - No
Application cisco business_access_points < 10.1.1.0 Yes
Operating System cisco access_points < 16.12.4a Yes
Hardware cisco catalyst_9800-40 - No
Hardware cisco catalyst_9800-80 - No
Hardware cisco catalyst_9800-cl - No
Hardware cisco catalyst_9800-l - No
Hardware cisco catalyst_9800-l-c - No
Hardware cisco catalyst_9800-l-f - No
Application cisco aironet_access_point_software 8.5\(154.27\) Yes
Application cisco aironet_access_point_software 8.8\(125.0\) Yes
Application cisco aironet_access_point_software 8.10\(105.0\) Yes
Application cisco aironet_access_point_software 8.10\(105.4\) Yes
Application cisco aironet_access_point_software 17.1.2.6 Yes
Application cisco aironet_access_point_software 17.1.2.9 Yes
Application cisco aironet_access_point_software 17.2.0.37 Yes
Hardware cisco aironet_1850e - No
Hardware cisco aironet_1850i - No
References