CVE-2020-3559

CVE Database · CVE-2020-3559

CVE-2020-3559

· HIGHModified

CVSS v3.1

8.6

EPSS

1.39%

Published

Sep 24, 2020

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in Cisco Aironet Access Point (AP) Software could allow an unauthenticated, remote attacker to cause an affected device to reload. The vulnerability is due to improper handling of clients that are trying to connect to the AP. An attacker could exploit this vulnerability by sending authentication requests from multiple clients to an affected device. A successful exploit could allow the attacker to cause the affected device to reload.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Weaknesses (CWE)

CWE-400CWE-400

Affected Products (33)

cisco · wireless_lan_controller (up to 8.10.112.0)vulnerable

cisco · 1111-4pwe

cisco · 1111-8plteeawb

cisco · 1111-8pwb

cisco · 1113-8plteeawe

cisco · 1113-8pmwe

cisco · 1113-8pwe

cisco · 1116-4plteeawe

cisco · 1116-4pwe

cisco · 1117-4plteeawe

cisco · 1117-4pmlteeawe

cisco · 1117-4pmwe

cisco · 1117-4pwe

References (2)

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aironet-dos-h3DCuLXw

Vendor Advisory

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aironet-dos-h3DCuLXw

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs