cisco-sa-aironet-dos-VHr2zG9y: Cisco Aironet Access Points UDP Flooding Denial of Service Vulnerability
First published: Thu Sep 24 2020(Updated: )
A vulnerability in Cisco Aironet Access Points (APs) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) on an affected device. The vulnerability is due to improper resource management while processing specific packets. An attacker could exploit this vulnerability by sending a series of crafted UDP packets to a specific port on an affected device. A successful exploit could either allow the attacker to tear down the connection between the AP and the wireless LAN controller, resulting in the affected device not being able to process client traffic, or cause the vulnerable device to reload, triggering a DoS condition. After the attack, the affected device should automatically recover its normal functions without manual intervention. Cisco has released software updates that address the vulnerability described in this advisory. There are no workarounds that address this vulnerability. This advisory is available at the following link:https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aironet-dos-VHr2zG9y
Credit: This vulnerability was found by Dakshil Shah Cisco during internal security testingShu Xiao Cisco during internal security testing
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Cisco Wireless LAN Controllers | =8.10<8.10.112.0=8.9<8.10.112.0=8.8<8.8.130.0=8.7<8.8.130.0=8.6<8.8.130.0=8.5 and earlier<8.5.161.0 | 8.10.112.0 8.10.112.0 8.8.130.0 8.8.130.0 8.8.130.0 8.5.161.0 |
| Cisco Catalyst 9800 Series Wireless Controllers | =16.12 and earlier<16.12.4a | 16.12.4a |
| Cisco Business AP Software | =10.0<10.1.1.0 | 10.1.1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of Cisco Aironet DoS vulnerability cisco-sa-aironet-dos-VHr2zG9y?
The severity of the Cisco Aironet DoS vulnerability cisco-sa-aironet-dos-VHr2zG9y is classified as high due to its potential to cause denial of service.
How do I fix Cisco Aironet DoS vulnerability cisco-sa-aironet-dos-VHr2zG9y?
To fix the Cisco Aironet DoS vulnerability cisco-sa-aironet-dos-VHr2zG9y, update to the recommended software versions specified by Cisco.
Which devices are affected by vulnerability cisco-sa-aironet-dos-VHr2zG9y?
Vulnerability cisco-sa-aironet-dos-VHr2zG9y affects Cisco Wireless LAN Controllers and specific models of Catalyst 9800 Wireless Controllers.
Can Cisco Aironet DoS vulnerability cisco-sa-aironet-dos-VHr2zG9y be exploited remotely?
Yes, the Cisco Aironet DoS vulnerability cisco-sa-aironet-dos-VHr2zG9y can be exploited by an unauthenticated remote attacker.
What is the cause of vulnerability cisco-sa-aironet-dos-VHr2zG9y?
The cause of vulnerability cisco-sa-aironet-dos-VHr2zG9y is improper resource management when processing specific packets.
- agent/type
- agent/last-modified-date
- agent/title
- agent/severity
- agent/references
- agent/author
- agent/weakness
- agent/first-publish-date
- agent/event
- agent/description
- agent/source
- agent/softwarecombine
- agent/tags
- collector/cisco-advisory
- source/Cisco
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- vendor/cisco
- canonical/cisco wireless lan controllers
- version/cisco wireless lan controllers/8.10
- version/cisco wireless lan controllers/8.9
- version/cisco wireless lan controllers/8.8
- version/cisco wireless lan controllers/8.7
- version/cisco wireless lan controllers/8.6
- version/cisco wireless lan controllers/8.5 and earlier
- canonical/cisco catalyst 9800 series wireless controllers
- version/cisco catalyst 9800 series wireless controllers/16.12 and earlier
- canonical/cisco business ap software
- version/cisco business ap software/10.0