Cisco Releases Security Updates for Multiple Products

Cisco released security updates to address vulnerabilities in Cisco IOS, IOS XE, and AP software. A cyber threat actor could exploit some of these vulnerabilities to cause a denial-of-service. CISA encourages users and administrators to review the following advisories and apply the necessary...

CVE-2024-20265

A vulnerability in the boot process of Cisco Access Point AP Software could allow an unauthenticated, physical attacker to bypass the Cisco Secure Boot functionality and load a software image that has been tampered with on an affected device. This vulnerability exists because unnecessary commands...

Input validation

A vulnerability in Cisco access point AP software could allow an unauthenticated, adjacent attacker to cause a denial of service DoS condition on an affected device. This vulnerability is due to insufficient validation of certain parameters within 802.11 frames. An attacker could exploit this...

CVE-2023-20097

Cisco's CVE-2023-20097 concerns command-injection in Cisco Access Points (AP) software. The issue arises from improper input validation of commands issued from the wireless controller to an AP, allowing an authenticated local attacker with Administrator CLI access to inject arbitrary commands and...

CVE-2023-20112

The CVE-2023-20112 entry describes a DoS in Cisco access point software caused by insufficient validation of parameters in 802.11 frames. An unauthenticated, adjacent attacker can trigger an unexpected reload by sending a crafted 802.11 association request frame, leading to device DoS. Affected: ...

CVE-2023-20056

CVE-2023-20056 affects Cisco Access Point software management CLI. The issue stems from insufficient input validation of user commands, allowing an authenticated, local attacker to trigger a reload and DoS on the device. Exploitation details are not provided in the documents; no explicit affected...

CVE-2020-3559

A vulnerability in Cisco Aironet Access Point AP Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to improper handling of clients that are trying to connect to the AP. An attacker could exploit this vulnerability by sending...

CVE-2020-3559 Cisco Aironet Access Point Authentication Flood Denial of Service Vulnerability

A vulnerability in Cisco Aironet Access Point AP Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to improper handling of clients that are trying to connect to the AP. An attacker could exploit this vulnerability by sending...

CVE-2017-12273

A vulnerability in 802.11 association request frame processing for the Cisco Aironet 1560, 2800, and 3800 Series Access Points could allow an unauthenticated, Layer 2 radio frequency RF adjacent attacker to cause the Access Point AP to reload, resulting in a denial of service DoS condition. The...