CVE-2022-20945Classic Buffer Overflow in Cisco Catalyst 9800-40 Firmware

CWE-120Classic Buffer OverflowCWE-20Improper Input Validation4 documents4 sources
Severity
6.5MEDIUMNVD
CNA7.4
EPSS
0.1%
top 71.14%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
5
Cisco Catalyst 9800-40 FirmwareCisco Catalyst 9800-80 FirmwareCisco Catalyst 9800-cl Firmware+2 more
Timeline
PublishedSep 30
Latest updateOct 1

Description

A vulnerability in the 802.11 association frame validation of Cisco Catalyst 9100 Series Access Points (APs) could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation of certain parameters within association request frames received by the AP. An attacker could exploit this vulnerability by sending a crafted 802.11 association request to a nearby device. An exploit could allow th

CVSS vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 2.8 | Impact: 3.6

Affected Packages5 packages

NVDcisco/catalyst_9800-l_firmware17.617.6.4
NVDcisco/catalyst_9800-40_firmware17.617.6.4
NVDcisco/catalyst_9800-80_firmware17.617.6.4
NVDcisco/catalyst_9800-cl_firmware17.617.6.4

🔴Vulnerability Details

2
GHSA
GHSA-w565-xpj5-g5rx: A vulnerability in the 8022022-10-01
CVEList
Cisco Catalyst 9100 Series Access Points Association Request Denial of Service Vulnerability2022-09-30

📋Vendor Advisories

1
Cisco
Cisco Catalyst 9100 Series Access Points Association Request Denial of Service Vulnerability2022-09-28
CVE-2022-20945 — Classic Buffer Overflow in Cisco | cvebase