CVE-2024-20354

CVE Database · CVE-2024-20354

CVE-2024-20354

· MEDIUMAnalyzed

CVSS v3.1

4.7

EPSS

0.29%

Published

Mar 27, 2024

Modified

Aug 13, 2025

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in the handling of encrypted wireless frames of Cisco Aironet Access Point (AP) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on the affected device. This vulnerability is due to incomplete cleanup of resources when dropping certain malformed frames. An attacker could exploit this vulnerability by connecting as a wireless client to an affected AP and sending specific malformed frames over the wireless connection. A successful exploit could allow the attacker to cause degradation of service to other clients, which could potentially lead to a complete DoS condition.

CVSS Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L

Weaknesses (CWE)

CWE-460

Affected Products (37)

cisco · wireless_lan_controller_software (up to 8.6.0.0)vulnerable

cisco · wireless_lan_controller_software (up to 8.10.190.81)vulnerable

cisco · aironet_1530e

cisco · aironet_1530i

cisco · aironet_1552h

cisco · aironet_1552s

cisco · aironet_1552wu

cisco · aironet_1700i

cisco · aironet_2700e

cisco · aironet_2700i

cisco · aironet_3700e

cisco · aironet_3700i

References (2)

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-airo-ap-dos-PPPtcVW

Vendor Advisory

https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-airo-ap-dos-PPPtcVW

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs