CVE-2017-12274: Input Validation
First published: Thu Nov 02 2017(Updated: )
A vulnerability in Extensible Authentication Protocol (EAP) ingress frame processing for the Cisco Aironet 1560, 2800, and 3800 Series Access Points could allow an unauthenticated, Layer 2 radio frequency (RF) adjacent attacker to cause the Access Point (AP) to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to insufficient validation of the EAP frame. An attacker could exploit this vulnerability by sending a malformed EAP frame to the targeted device. A successful exploit could allow the attacker to cause the AP to reload, resulting in a DoS condition while the AP is reloading. It may be necessary to manually power cycle the device in order for it to recover. This vulnerability affects the following Cisco products running either the Lightweight AP Software or Mobility Express image: Aironet 1560 Series Access Points, Aironet 2800 Series Access Points, Aironet 3800 Series Access Points. Note: The Cisco Aironet 1560 Series Access Point device is supported as of release 8.3.112.0. Cisco Bug IDs: CSCve18935.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Aironet 1560 Firmware | ||
| Cisco Aironet 1562 firmware | ||
| Cisco Aironet 1562E Firmware | ||
| Cisco Aironet 1562 firmware | ||
| cisco aironet 2800 firmware | ||
| Cisco Aironet 2800e | ||
| Cisco Aironet 2800i | ||
| cisco aironet 3800 firmware | ||
| Cisco Aironet 3800E Firmware | ||
| Cisco Aironet 3800i | ||
| Cisco Aironet 3800P Firmware |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is CVE-2017-12274?
CVE-2017-12274 is a vulnerability in the Extensible Authentication Protocol (EAP) ingress frame processing for Cisco Aironet 1560, 2800, and 3800 Series Access Points.
How severe is CVE-2017-12274?
CVE-2017-12274 has a severity rating of 6.5 (medium).
How can an unauthenticated attacker exploit CVE-2017-12274?
An unauthenticated attacker can exploit CVE-2017-12274 by sending malicious EAP ingress frames to the affected Cisco Aironet Access Points, causing them to reload and resulting in a denial of service.
Which Cisco Aironet Access Points are affected by CVE-2017-12274?
The Cisco Aironet 1560, 2800, and 3800 Series Access Points are affected by CVE-2017-12274.
Where can I find more information about CVE-2017-12274?
You can find more information about CVE-2017-12274 on the Cisco Security Advisory page and other security websites.
- agent/type
- agent/severity
- agent/author
- agent/references
- agent/weakness
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- agent/softwarecombine
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco aironet 1560 firmware
- canonical/cisco aironet 1562 firmware
- canonical/cisco aironet 1562e firmware
- canonical/cisco aironet 2800 firmware
- canonical/cisco aironet 2800e
- canonical/cisco aironet 2800i
- canonical/cisco aironet 3800 firmware
- canonical/cisco aironet 3800e firmware
- canonical/cisco aironet 3800i
- canonical/cisco aironet 3800p firmware