Design/Logic Flaw

2019-07-1721:15:00

PRIOn knowledge base

www.prio-n.com

7.4 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

25.0%

JSON

A vulnerability in the 802.11r Fast Transition (FT) implementation for Cisco IOS Access Points (APs) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected interface. The vulnerability is due to a lack of complete error handling condition for client authentication requests sent to a targeted interface configured for FT. An attacker could exploit this vulnerability by sending crafted authentication request traffic to the targeted interface, causing the device to restart unexpectedly.

CPENameOperatorVersion
access_pointsge8.6
access_pointslt8.8.100.0
access_pointsge8.4
access_pointslt8.5.131.0
access_pointsge8.3
access_pointslt8.3.150.0
access_pointslt8.2.170.0
aironet_3700e_firmwareeq15.33.0-jc14
aironet_3700e_firmwareeq15.33.0-jd6
aironet_3700i_firmwareeq15.33.0-jc14

Name	Operator	Version
access_points	ge	8.6
access_points	lt	8.8.100.0
access_points	ge	8.4
access_points	lt	8.5.131.0
access_points	ge	8.3
access_points	lt	8.3.150.0
access_points	lt	8.2.170.0
aironet_3700e_firmware	eq	15.33.0-jc14
aironet_3700e_firmware	eq	15.33.0-jd6
aironet_3700i_firmware	eq	15.33.0-jc14