CVSS: 8.6EPSS: 0%CPEs: 58EXPL: 0CVE-2020-3560 – Cisco Aironet Access Points UDP Flooding Denial of Service Vulnerability
https://notcve.org/view.php?id=CVE-2020-3560
A vulnerability in Cisco Aironet Access Points (APs) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) on an affected device. The vulnerability is due to improper resource management while processing specific packets. An attacker could exploit this vulnerability by sending a series of crafted UDP packets to a specific port on an affected device. A successful exploit could either allow the attacker to tear down the connection between the AP and the wireless LAN controller, resulting in the affected device not being able to process client traffic, or cause the vulnerable device to reload, triggering a DoS condition. After the attack, the affected device should automatically recover its normal functions without manual intervention. • https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-aironet-dos-VHr2zG9y • CWE-400: Uncontrolled Resource Consumption •
CVSS: 6.1EPSS: 0%CPEs: 5EXPL: 0CVE-2012-6026
https://notcve.org/view.php?id=CVE-2012-6026
The HTTP Profiler on the Cisco Aironet Access Point with software 15.2 and earlier does not properly manage buffers, which allows remote attackers to cause a denial of service (device reload) via crafted HTTP requests, aka Bug ID CSCuc62460. El HTTP Profiler en el Cisco Aironet Access Point con software v15.2 y anteriores no gestiona correctamente los búfers, permitiendo a atacantes remotos causar una denegación de servicio (reinicio del dispositivo) mediante peticiones HTTP especialmente diseñadas, también conocidos como Bug ID CSCuc62460. • http://tools.cisco.com/security/center/content/CiscoSecurityNotice/CVE-2012-6026 http://tools.cisco.com/security/center/viewAlert.x?alertId=28436 • CWE-119: Improper Restriction of Operations within the Bounds of a Memory Buffer •