Lucene search

CiscoCVE-2020-3486

HistorySep 24, 2020 - 6:15 p.m.

CVE-2020-3486

2020-09-2418:15:20

CWE-20

cisco

web.nvd.nist.gov

cve-2020-3486

capwap

protocol processing

vulnerabilities

cisco

ios xe software

dos

nvd

CVSS2

6.1

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:N/I:N/A:C

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

25.0%

JSON

Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9800 Series Wireless Controllers could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition of an affected device. These vulnerabilities are due to insufficient validation of CAPWAP packets. An attacker could exploit these vulnerabilities by sending a malformed CAPWAP packet to an affected device. A successful exploit could allow the attacker to cause the affected device to crash and reload, resulting in a DoS condition on the affected device.

Affected configurations

Nvd

Node

ciscoios_xeMatch-

AND

ciscocatalyst_9105Match-

ciscocatalyst_9115Match-

ciscocatalyst_9117Match-

ciscocatalyst_9120Match-

ciscocatalyst_9130Match-

ciscocatalyst_9800-40Match-

ciscocatalyst_9800-80Match-

ciscocatalyst_9800-clMatch-

ciscocatalyst_9800-lMatch-

ciscocatalyst_9800_embedded_wireless_controllerMatch-

VendorProductVersionCPE
ciscoios_xe-cpe:2.3:o:cisco:ios_xe:-:*:*:*:*:*:*:*
ciscocatalyst_9105-cpe:2.3:h:cisco:catalyst_9105:-:*:*:*:*:*:*:*
ciscocatalyst_9115-cpe:2.3:h:cisco:catalyst_9115:-:*:*:*:*:*:*:*
ciscocatalyst_9117-cpe:2.3:h:cisco:catalyst_9117:-:*:*:*:*:*:*:*
ciscocatalyst_9120-cpe:2.3:h:cisco:catalyst_9120:-:*:*:*:*:*:*:*
ciscocatalyst_9130-cpe:2.3:h:cisco:catalyst_9130:-:*:*:*:*:*:*:*
ciscocatalyst_9800-40-cpe:2.3:h:cisco:catalyst_9800-40:-:*:*:*:*:*:*:*
ciscocatalyst_9800-80-cpe:2.3:h:cisco:catalyst_9800-80:-:*:*:*:*:*:*:*
ciscocatalyst_9800-cl-cpe:2.3:h:cisco:catalyst_9800-cl:-:*:*:*:*:*:*:*
ciscocatalyst_9800-l-cpe:2.3:h:cisco:catalyst_9800-l:-:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	ios_xe	-	cpe:2.3:o:cisco:ios_xe:-:::::::*
cisco	catalyst_9105	-	cpe:2.3:h:cisco:catalyst_9105:-:::::::*
cisco	catalyst_9115	-	cpe:2.3:h:cisco:catalyst_9115:-:::::::*
cisco	catalyst_9117	-	cpe:2.3:h:cisco:catalyst_9117:-:::::::*
cisco	catalyst_9120	-	cpe:2.3:h:cisco:catalyst_9120:-:::::::*
cisco	catalyst_9130	-	cpe:2.3:h:cisco:catalyst_9130:-:::::::*
cisco	catalyst_9800-40	-	cpe:2.3:h:cisco:catalyst_9800-40:-:::::::*
cisco	catalyst_9800-80	-	cpe:2.3:h:cisco:catalyst_9800-80:-:::::::*
cisco	catalyst_9800-cl	-	cpe:2.3:h:cisco:catalyst_9800-cl:-:::::::*
cisco	catalyst_9800-l	-	cpe:2.3:h:cisco:catalyst_9800-l:-:::::::*

Rows per page:

1-10 of 111

CNA Affected

[
  {
    "product": "Cisco IOS XE Software",
    "vendor": "Cisco",
    "versions": [
      {
        "status": "affected",
        "version": "n/a"
      }
    ]
  }
]

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-capwap-dos-TPdNTdyq

CVSS2

6.1

Attack Vector

ADJACENT_NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:A/AC:L/Au:N/C:N/I:N/A:C

CVSS3

6.5

Attack Vector

ADJACENT

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

AI Score

6.5

Confidence

High

EPSS

0.001

Percentile

25.0%

JSON

Related for CVE-2020-3486