CVE-2019-15265 — Improper Input Validation in Cisco Aironet Access Point Software

CWE-20 — Improper Input Validation4 documents4 sources

Severity

6.5MEDIUMNVD

EPSS

0.2%

top 53.35%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Aironet Access Point Software Cisco Aironet 1540 Firmware Cisco Aironet 1560 Firmware +3 more

Timeline

PublishedOct 16

Latest updateMay 24

Description

A vulnerability in the bridge protocol data unit (BPDU) forwarding functionality of Cisco Aironet Access Points (APs) could allow an unauthenticated, adjacent attacker to cause an AP port to go into an error disabled state. The vulnerability occurs because BPDUs received from specific wireless clients are forwarded incorrectly. An attacker could exploit this vulnerability on the wireless network by sending a steady stream of crafted BPDU frames. A successful exploit could allow the attacker to c…

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages6 packages

▶CVEListV5cisco/cisco_aironet_access_point_softwareunspecified — n/a

▶NVDcisco/aironet_1540_firmware8.6 — 8.8.120.0+2

▶NVDcisco/aironet_1560_firmware8.6 — 8.8.120.0+2

▶NVDcisco/aironet_1800_firmware8.6 — 8.8.120.0+2

▶NVDcisco/aironet_2800_firmware8.6 — 8.8.120.0+2

🔴Vulnerability Details

GHSA

GHSA-xp9v-28f9-8837: A vulnerability in the bridge protocol data unit (BPDU) forwarding functionality of Cisco Aironet Access Points (APs) could allow an unauthenticated,↗2022-05-24

▶

CVEList

Cisco Aironet Access Points Bridge Protocol Data Unit Port Disable Denial of Service Vulnerability↗2019-10-16

▶

📋Vendor Advisories

Cisco

Cisco Aironet Access Points Bridge Protocol Data Unit Port Disable Denial of Service Vulnerability↗2019-10-16

▶