ADVISORY!
TLP : CLEAR
Date : 27/03/2024
REF NO : CERT / 2024/03/23
Cisco Access Point Software Denial of Service Vulnerability
Severity Level: High
Components Affected
- 6300 Series Embedded Services APs
- Aironet 1540 Series APs
- Aironet 1560 Series APs
- Aironet 1800 Series APs
- Aironet 2800 Series APs
- Aironet 3800 Series APs
- Aironet 4800 APs
- Business 100 Series APs and Mesh Extenders
- Business 200 Series APs
- Catalyst 9100 APs
- Catalyst IW6300 Heavy Duty Series APs
- Integrated APs on 1100 Integrated Services Routers (ISRs)
- Wide Pluggable Form Factor Wi-Fi 6 AP Module for Industrial Routers
Overview
A vulnerability in the IP packet processing of Cisco Access Point (AP) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
Description
This vulnerability is due to insufficient input validation of certain IPv4 packets. An attacker could exploit this vulnerability by sending a crafted IPv4 packet either to or through an affected device. A successful exploit could allow the attacker to cause an affected device to reload unexpectedly, resulting in a DoS condition. To successfully exploit this vulnerability, the attacker does not need to be associated with the affected AP. This vulnerability cannot be exploited by sending IPv6 packets.
Impact
- Denial of Service
Solution/ Workarounds
Cisco has released free software updates that address the vulnerability described in this advisory. Customers with service contracts that entitle them to regular software updates should obtain security fixes through their usual update channels.
Reference
Disclaimer : The information provided herein is on an “as is” basis, without warranty of any kind.
Sri Lanka Computer Emergency Readiness Team | Coordination Centre
- Hotline : 101
- +94 11 269 1692
- Room 4-112, BMICH, Bauddhaloka Mawatha, Colombo 07, Sri Lanka.
- General inquiry: cert@cert.gov.lk
- Security incidents: incidents@cert.gov.lk
- Social media incidents: report@cert.gov.lk
