Lucene search

[email protected]CVE-2021-34769

HistorySep 23, 2021 - 3:15 a.m.

CVE-2021-34769

2021-09-2303:15:20

CWE-415

[email protected]

web.nvd.nist.gov

capwap

cisco

ios

xe software

catalyst 9000

wireless controllers

vulnerability

denial of service

dos

remote attack

nvd

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

8.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

7.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.7%

JSON

Multiple vulnerabilities in the Control and Provisioning of Wireless Access Points (CAPWAP) protocol processing of Cisco IOS XE Software for Cisco Catalyst 9000 Family Wireless Controllers could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. These vulnerabilities are due to insufficient validation of CAPWAP packets. An attacker could exploit the vulnerabilities by sending a malformed CAPWAP packet to an affected device. A successful exploit could allow the attacker to cause the affected device to crash and reload, resulting in a DoS condition.

Affected configurations

NVD

Node

ciscoios_xeMatch3.15.1xbs

ciscoios_xeMatch3.15.2xbs

ciscoios_xeMatch17.3.1

ciscoios_xeMatch17.3.2

ciscoios_xeMatch17.3.2a

ciscoios_xeMatch17.4.1

ciscoios_xeMatch17.5.1

AND

ciscocatalyst_9800Match-

ciscocatalyst_9800-40Match-

ciscocatalyst_9800-40_wireless_controllerMatch-

ciscocatalyst_9800-80Match-

ciscocatalyst_9800-80_wireless_controllerMatch-

ciscocatalyst_9800-clMatch-

ciscocatalyst_9800-lMatch-

ciscocatalyst_9800-l-cMatch-

ciscocatalyst_9800-l-fMatch-

ciscocatalyst_9800_embedded_wireless_controllerMatch-

CPENameOperatorVersion
cisco:ios_xecisco ios xeeq3.15.1xbs
cisco:ios_xecisco ios xeeq3.15.2xbs
cisco:ios_xecisco ios xeeq17.3.1
cisco:ios_xecisco ios xeeq17.3.2
cisco:ios_xecisco ios xeeq17.3.2a
cisco:ios_xecisco ios xeeq17.4.1
cisco:ios_xecisco ios xeeq17.5.1

CPE	Name	Operator	Version
cisco:ios_xe	cisco ios xe	eq	3.15.1xbs
cisco:ios_xe	cisco ios xe	eq	3.15.2xbs
cisco:ios_xe	cisco ios xe	eq	17.3.1
cisco:ios_xe	cisco ios xe	eq	17.3.2
cisco:ios_xe	cisco ios xe	eq	17.3.2a
cisco:ios_xe	cisco ios xe	eq	17.4.1
cisco:ios_xe	cisco ios xe	eq	17.5.1

CNA Affected

[
  {
    "product": "Cisco IOS XE Software ",
    "vendor": "Cisco",
    "versions": [
      {
        "status": "affected",
        "version": "n/a"
      }
    ]
  }
]

References

tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ewlc-capwap-dos-gmNjdKOY

7.8 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

NONE

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:L/Au:N/C:N/I:N/A:C

8.6 High

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

CHANGED

Confidentiality Impact

NONE

Integrity Impact

NONE

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

7.7 High

AI Score

Confidence

High

0.002 Low

EPSS

Percentile

52.7%

JSON

Related for CVE-2021-34769

prion1 cvelist1 nvd1 nessus1 cisco1