CVE-2018-0249

Severity Score

4.3

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

A vulnerability when handling incoming 802.11 Association Requests for Cisco Aironet 1800 Series Access Point (APs) on Qualcomm Atheros (QCA) based hardware platforms could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected system. A successful exploit could prevent new clients from joining the AP. The vulnerability is due to incorrect handling of malformed or invalid 802.11 Association Requests. An attacker could exploit this vulnerability by sending a malformed stream of 802.11 Association Requests to the local interface of the targeted device. A successful exploit could allow the attacker to cause a DoS situation on an affected system, causing new client 802.11 Association Requests to fail. This vulnerability affects the following Cisco products: Aironet 1560 Series Access Points, Aironet 1810 Series OfficeExtend Access Points, Aironet 1810w Series Access Points, Aironet 1815 Series Access Points, Aironet 1830 Series Access Points, Aironet 1850 Series Access Points, Aironet 2800 Series Access Points, Aironet 3800 Series Access Points. Cisco Bug IDs: CSCvg02116.

Una vulnerabilidad al gestionar peticiones entrantes de asociación 802.11 para los Cisco Aironet 1800 Series Access Point (AP) en plataformas de hardware de Qualcomm Atheros (QCA) podría permitir que un atacante adyacente sin autenticar provoque una denegación de servicio (DoS) en un sistema afectado. Su explotación con éxito podría evitar que nuevos clientes se unan al AP. La vulnerabilidad se debe a la gestión incorrecta de peticiones de asociación 802.11 mal formadas o inválidas. Un atacante podría explotar esta vulnerabilidad enviando un flujo mal formado de peticiones de asociación 802.11 a la interfaz local del dispositivo objetivo. Su explotación con éxito podría permitir que el atacante provoque una situación de denegación de servicio (DoS) en un sistema afectado, lo que provocaría que las nuevas peticiones de asociación 802.11 fracasasen. Esta vulnerabilidad afecta a los siguientes productos Cisco: Aironet 1560 Series Access Points, Aironet 1810 Series OfficeExtend Access Points, Aironet 1810w Series Access Points, Aironet 1815 Series Access Points, Aironet 1830 Series Access Points, Aironet 1850 Series Access Points, Aironet 2800 Series Access Points y Aironet 3800 Series Access Points. Cisco Bug IDs: CSCvg02116.

*Credits: N/A

Attack Vector

Adjacent

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

None

Integrity

None

Availability

Low

Attack Vector

Adjacent

Attack Complexity

Low

Authentication

None

Confidentiality

None

Integrity

None

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2017-11-27 CVE Reserved
2018-05-02 CVE Published
2024-03-11 EPSS Updated
2024-08-05 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-20: Improper Input Validation

CAPEC

References (2)

URL	Tag	Source
http://www.securitytracker.com/id/1040816	Third Party Advisory

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20180502-aironet-dos	2020-10-22

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Cisco Search vendor "Cisco"		Aironet Access Point Software Search vendor "Cisco" for product "Aironet Access Point Software"				8.2\(161.0\) Search vendor "Cisco" for product "Aironet Access Point Software" and version "8.2\(161.0\)"		-		Affected