Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2022-20945

A vulnerability in the 802.11 association frame validation of Cisco Catalyst 9100 Series Access Points (APs) could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation of certain parameters within association request frames received by the AP. An attacker could exploit this vulnerability by sending a crafted 802.11 association request to a nearby device. An exploit could allow the attacker to unexpectedly reload the device, resulting in a DoS condition.

Published

2022-09-30T19:15:13.770

Last Modified

2024-11-21T06:43:52.580

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 7.4 (HIGH)

Weaknesses

Type: Secondary
CWE-120
Type: Primary
CWE-20

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Operating System	cisco	catalyst_9800-l_firmware	< 17.6.4	Yes
Hardware	cisco	catalyst_9800-l	-	No
Operating System	cisco	catalyst_9800-40_firmware	< 17.6.4	Yes
Hardware	cisco	catalyst_9800-40	-	No
Operating System	cisco	catalyst_9800-80_firmware	< 17.6.4	Yes
Hardware	cisco	catalyst_9800-80	-	No
Operating System	cisco	catalyst_9800-cl_firmware	< 17.6.4	Yes
Hardware	cisco	catalyst_9800-cl	-	No

References

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-assoc-dos-EgVqtON8 Vendor Advisory ([email protected])
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-assoc-dos-EgVqtON8 Vendor Advisory (af854a3a-2127-422b-91ae-364da2661108)