CVE-2020-3560: Cisco Aironet Access Points UDP Flooding Denial of Service Vulnerability

First published: Thu Sep 24 2020(Updated: )

A vulnerability in Cisco Aironet Access Points (APs) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) on an affected device. The vulnerability is due to improper resource management while processing specific packets. An attacker could exploit this vulnerability by sending a series of crafted UDP packets to a specific port on an affected device. A successful exploit could either allow the attacker to tear down the connection between the AP and the wireless LAN controller, resulting in the affected device not being able to process client traffic, or cause the vulnerable device to reload, triggering a DoS condition. After the attack, the affected device should automatically recover its normal functions without manual intervention.

Credit: ykramarz@cisco.com

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

• agent/type
• agent/weakness
• agent/author
• agent/references
• agent/description
• agent/severity
• agent/title
• agent/event
• agent/first-publish-date
• collector/mitre-cve
• source/MITRE
• agent/last-modified-date
• agent/source
• agent/softwarecombine
• agent/tags
• collector/nvd-index
• agent/software-canonical-lookup-request
• vendor/cisco
• canonical/cisco wireless lan controller software
• version/cisco wireless lan controller software/8.9
• canonical/cisco wireless lan controller software 7.1
• version/cisco wireless lan controller software 7.1/8.6
• canonical/cisco 1111-4pwe
• canonical/cisco 1111-8plteeawb
• canonical/cisco 1111-8pwb
• canonical/cisco 1113-8plteeawe
• canonical/cisco 1113-8pmwe
• canonical/cisco 1116-4plteeawe
• canonical/cisco 1116-4pwe
• canonical/cisco c1117-4p
• canonical/cisco aironet 1542d
• canonical/cisco aironet 1542i firmware
• canonical/cisco aironet 1562 firmware
• canonical/cisco aironet 1562e firmware
• canonical/cisco aironet 1815 firmware
• canonical/cisco aironet 1830e firmware
• canonical/cisco aironet 1830i access point
• canonical/cisco aironet 1850e access point
• canonical/cisco aironet 1850i access point
• canonical/cisco aironet 2800e firmware
• canonical/cisco aironet 2800 firmware
• canonical/cisco aironet 3800e firmware
• canonical/cisco aironet 3800 firmware
• canonical/cisco aironet 3800p firmware
• canonical/cisco aironet 4800 firmware
• canonical/cisco business 140ac access point firmware
• canonical/cisco business 145ac access point firmware
• canonical/cisco business 240ac access point firmware
• canonical/cisco catalyst 9000 family switches
• canonical/cisco catalyst 9115 firmware
• canonical/cisco catalyst 9117 firmware
• canonical/cisco catalyst 9120 access point firmware
• canonical/cisco catalyst 9130 access point firmware
• canonical/cisco catalyst iw6300 ac firmware
• canonical/cisco esw-6300-con-x-k9 firmware
• canonical/cisco business access points
• version/cisco business access points/10.0
• canonical/cisco access points
• canonical/cisco catalyst 9800-40
• canonical/cisco catalyst 9800-80
• canonical/cisco catalyst 9800-cl firmware
• canonical/cisco catalyst 9800-l
• canonical/cisco access point software
• version/cisco access point software/8.5\(154.27\)
• version/cisco access point software/8.8\(125.0\)
• version/cisco access point software/8.10\(105.0\)
• version/cisco access point software/8.10\(105.4\)
• version/cisco access point software/17.1.2.6
• version/cisco access point software/17.1.2.9
• version/cisco access point software/17.2.0.37