CVE-2019-1826
5.7
Vector
CVSS:3.0/AV:A/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H
Exploitability: 2.1 / Impact: 3.6
Source: NVD
Description
A vulnerability in the quality of service (QoS) feature of Cisco Aironet Series Access Points (APs) could allow an authenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation on QoS fields within Wi-Fi frames by the affected device. An attacker could exploit this vulnerability by sending malformed Wi-Fi frames to an affected device. A successful exploit could allow the attacker to cause the affected device to crash, resulting in a DoS condition.
Affected (2)
Products: Cisco: Aironet Access Point Firmware
Configuration A
| Vulnerable Software | Affected Versions |
|---|---|
| All versions |
| Running on/with | Platform Versions |
|---|---|
Cisco Aironet 1562d | All versions |
Cisco Aironet 1562e | All versions |
Cisco Aironet 1562i | All versions |
Cisco Aironet 2800e | All versions |
Cisco Aironet 2800i | All versions |
Cisco Aironet 3800e | All versions |
Cisco Aironet 3800i | All versions |
Cisco Aironet 3800p | All versions |
Cisco Aironet 4800 | All versions |
Configuration B
| Vulnerable Software | Affected Versions |
|---|---|
| Version 8.5(131.3) |
| Running on/with | Platform Versions |
|---|---|
Cisco Aironet 1850e | All versions |
Cisco Aironet 1850i | All versions |
References (4)
Source: psirt@cisco.com
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Timeline
No history available yet.