high
8.6
CWE
400
Advisory Published
Updated

CVE-2020-3560: Cisco Aironet Access Points UDP Flooding Denial of Service Vulnerability

First published: Thu Sep 24 2020(Updated: )

A vulnerability in Cisco Aironet Access Points (APs) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) on an affected device. The vulnerability is due to improper resource management while processing specific packets. An attacker could exploit this vulnerability by sending a series of crafted UDP packets to a specific port on an affected device. A successful exploit could either allow the attacker to tear down the connection between the AP and the wireless LAN controller, resulting in the affected device not being able to process client traffic, or cause the vulnerable device to reload, triggering a DoS condition. After the attack, the affected device should automatically recover its normal functions without manual intervention.

Credit: ykramarz@cisco.com

Affected SoftwareAffected VersionHow to fix
Cisco Wireless LAN Controllers>=8.9<8.10.112.0
Cisco Wireless LAN Controller software<8.5.161.0
Cisco Wireless LAN Controller software>=8.6<8.8.130.0
Cisco 1111-4pwe
Cisco 1111-8plteeawb
Cisco 1111-8pwb
Cisco 1113-8plteeawe
Cisco 1113-8pmwe
Cisco 1113-8pmwe
Cisco 1116-4plteeawe
Cisco 1116-4pwe
Cisco 1116-4plteeawe
Cisco c1117-4p
Cisco c1117-4p
Cisco c1117-4p
Cisco Aironet 1542D
Cisco Aironet 1542i
Cisco Aironet 1562 firmware
Cisco Aironet 1562E Firmware
Cisco Aironet 1562 firmware
Cisco Aironet 1815
Cisco Aironet 1830E Firmware
Cisco Aironet 1830i Access Point
Cisco Aironet 1850e Access Point
Cisco Aironet 1850i Access Point
Cisco Aironet 2800e
Cisco Aironet 2800i
Cisco Aironet 3800E Firmware
Cisco Aironet 3800i
Cisco Aironet 3800P Firmware
Cisco Aironet 4800 Firmware
Cisco Business 140ac Access Point firmware
Cisco Business 145ac Access Point firmware
Cisco Business 240ac Access Point firmware
Cisco Catalyst 9000 Family
Cisco Catalyst 9115axe
Cisco Catalyst 9117AX
Cisco Catalyst 9120
Cisco Catalyst 9130
Cisco Catalyst IW6300
Cisco ESW-6300-CON-X-K9 Firmware
Cisco Business Access Points>=10.0<10.1.1.0
Cisco Access Points<16.12.4a
Cisco Catalyst 9800-40
Cisco Catalyst 9800-80
Cisco Catalyst 9800-CL
Cisco Catalyst 9800-L
Cisco Catalyst 9800-L
Cisco Catalyst 9800-L
Cisco Access Point Software=8.5\(154.27\)
Cisco Access Point Software=8.8\(125.0\)
Cisco Access Point Software=8.10\(105.0\)
Cisco Access Point Software=8.10\(105.4\)
Cisco Access Point Software=17.1.2.6
Cisco Access Point Software=17.1.2.9
Cisco Access Point Software=17.2.0.37

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Reference Links

Frequently Asked Questions

  • What is CVE-2020-3560?

    CVE-2020-3560 is a vulnerability in Cisco Aironet Access Points (APs) that can allow an unauthenticated remote attacker to cause a denial of service (DoS) on an affected device.

  • How severe is CVE-2020-3560?

    CVE-2020-3560 has a severity rating of 8.6 (high).

  • How does CVE-2020-3560 work?

    CVE-2020-3560 is caused by improper resource management while processing specific packets, allowing an attacker to exploit the vulnerability and cause a DoS.

  • Which devices are affected by CVE-2020-3560?

    Cisco Aironet Access Points (APs) running certain versions of Cisco Wireless LAN Controller, Cisco Wireless LAN Controller Software, and Cisco Access Points are affected by CVE-2020-3560.

  • How can I fix CVE-2020-3560?

    To fix CVE-2020-3560, it is recommended to update the affected Cisco Aironet Access Points (APs) to a version that addresses the vulnerability.

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2025 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203