CVE-2023-20056: Cisco Access Point Software Denial of Service Vulnerability
First published: Thu Mar 23 2023(Updated: )
A vulnerability in the management CLI of Cisco access point (AP) software could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input to the affected command. A successful exploit could allow the attacker to cause an affected device to reload spontaneously, resulting in a DoS condition.
Credit: ykramarz@cisco.com
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Wireless LAN Controller Software | <8.10.183.0 | |
| Cisco Esw6300 | ||
| Cisco Aironet Access Point Software | <17.9.0.135 | |
| Cisco Aironet 1540 | ||
| Cisco Aironet 1542d | ||
| Cisco Aironet 1542i | ||
| Cisco Aironet 1560 | ||
| Cisco Aironet 1562d | ||
| Cisco Aironet 1562e | ||
| Cisco Aironet 1562i | ||
| Cisco Aironet 1800 | ||
| Cisco Aironet 1800i | ||
| Cisco Aironet 1810 | ||
| Cisco Aironet 1810w | ||
| Cisco Aironet 1815 | ||
| Cisco Aironet 1815i | ||
| Cisco Aironet 1815m | ||
| Cisco Aironet 1815t | ||
| Cisco Aironet 1815w | ||
| Cisco Aironet 2800 | ||
| Cisco Aironet 2800e | ||
| Cisco Aironet 2800i | ||
| Cisco Aironet 3800 | ||
| Cisco Aironet 3800e | ||
| Cisco Aironet 3800i | ||
| Cisco Aironet 3800p | ||
| Cisco Aironet 4800 | ||
| Cisco Catalyst 9100 | ||
| Cisco Catalyst 9105 | ||
| Cisco Catalyst 9105ax | ||
| Cisco Catalyst 9105axi | ||
| Cisco Catalyst 9105axw | ||
| Cisco Catalyst 9115 | ||
| Cisco Catalyst 9115 Ap | ||
| Cisco Catalyst 9115ax | ||
| Cisco Catalyst 9115axe | ||
| Cisco Catalyst 9115axi | ||
| Cisco Catalyst 9117 | ||
| Cisco Catalyst 9117 Ap | ||
| Cisco Catalyst 9117ax | ||
| Cisco Catalyst 9117axi | ||
| Cisco Catalyst 9120 | ||
| Cisco Catalyst 9120 Ap | ||
| Cisco Catalyst 9120ax | ||
| Cisco Catalyst 9120axe | ||
| Cisco Catalyst 9120axi | ||
| Cisco Catalyst 9120axp | ||
| Cisco Catalyst 9124 | ||
| Cisco Catalyst 9124ax | ||
| Cisco Catalyst 9124axd | ||
| Cisco Catalyst 9124axi | ||
| Cisco Catalyst 9130 | ||
| Cisco Catalyst 9130 Ap | ||
| Cisco Catalyst 9130ax | ||
| Cisco Catalyst 9130axe | ||
| Cisco Catalyst 9130axi | ||
| Cisco Catalyst Iw6300 | ||
| Cisco Catalyst Iw6300 Ac | ||
| Cisco Catalyst Iw6300 Dc | ||
| Cisco Catalyst Iw6300 Dcw | ||
| Cisco IOS XE | <16.12.8 | |
| Cisco IOS XE | >=17.1<17.3.6 | |
| Cisco IOS XE | >=17.4<17.6.5 | |
| Cisco IOS XE | >=17.7<17.9.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID of this Cisco access point software vulnerability?
The vulnerability ID is CVE-2023-20056.
What is the severity rating of CVE-2023-20056?
The severity rating of CVE-2023-20056 is medium with a score of 5.5.
How can an attacker exploit this vulnerability?
An attacker can exploit this vulnerability by sending malicious commands through the management CLI of Cisco access point software.
Who is affected by this vulnerability?
Users of Cisco Wireless LAN Controller Software versions up to 8.10.183.0 and Cisco Aironet Access Point Software versions up to 17.9.0.135 are affected by this vulnerability.
Is there a fix available for CVE-2023-20056?
Yes, Cisco has released a security advisory with mitigation details for this vulnerability.
- agent/weakness
- agent/type
- collector/nvd-index
- agent/software-canonical-lookup-request
- agent/author
- agent/references
- agent/softwarecombine
- agent/description
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/title
- agent/severity
- agent/tags
- agent/first-publish-date
- agent/event
- vendor/cisco
- canonical/cisco wireless lan controller software
- canonical/cisco esw6300
- canonical/cisco aironet access point software
- canonical/cisco aironet 1540
- canonical/cisco aironet 1542d
- canonical/cisco aironet 1542i
- canonical/cisco aironet 1560
- canonical/cisco aironet 1562d
- canonical/cisco aironet 1562e
- canonical/cisco aironet 1562i
- canonical/cisco aironet 1800
- canonical/cisco aironet 1800i
- canonical/cisco aironet 1810
- canonical/cisco aironet 1810w
- canonical/cisco aironet 1815
- canonical/cisco aironet 1815i
- canonical/cisco aironet 1815m
- canonical/cisco aironet 1815t
- canonical/cisco aironet 1815w
- canonical/cisco aironet 2800
- canonical/cisco aironet 2800e
- canonical/cisco aironet 2800i
- canonical/cisco aironet 3800
- canonical/cisco aironet 3800e
- canonical/cisco aironet 3800i
- canonical/cisco aironet 3800p
- canonical/cisco aironet 4800
- canonical/cisco catalyst 9100
- canonical/cisco catalyst 9105
- canonical/cisco catalyst 9105ax
- canonical/cisco catalyst 9105axi
- canonical/cisco catalyst 9105axw
- canonical/cisco catalyst 9115
- canonical/cisco catalyst 9115 ap
- canonical/cisco catalyst 9115ax
- canonical/cisco catalyst 9115axe
- canonical/cisco catalyst 9115axi
- canonical/cisco catalyst 9117
- canonical/cisco catalyst 9117 ap
- canonical/cisco catalyst 9117ax
- canonical/cisco catalyst 9117axi
- canonical/cisco catalyst 9120
- canonical/cisco catalyst 9120 ap
- canonical/cisco catalyst 9120ax
- canonical/cisco catalyst 9120axe
- canonical/cisco catalyst 9120axi
- canonical/cisco catalyst 9120axp
- canonical/cisco catalyst 9124
- canonical/cisco catalyst 9124ax
- canonical/cisco catalyst 9124axd
- canonical/cisco catalyst 9124axi
- canonical/cisco catalyst 9130
- canonical/cisco catalyst 9130 ap
- canonical/cisco catalyst 9130ax
- canonical/cisco catalyst 9130axe
- canonical/cisco catalyst 9130axi
- canonical/cisco catalyst iw6300
- canonical/cisco catalyst iw6300 ac
- canonical/cisco catalyst iw6300 dc
- canonical/cisco catalyst iw6300 dcw
- canonical/cisco ios xe
- version/cisco ios xe/17.1
- version/cisco ios xe/17.4
- version/cisco ios xe/17.7