CVE-2019-15265
Cisco Aironet Access Points Bridge Protocol Data Unit Port Disable Denial of Service Vulnerability
Severity Score
6.5
*CVSS v3.1
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
Track
*SSVC
Descriptions
A vulnerability in the bridge protocol data unit (BPDU) forwarding functionality of Cisco Aironet Access Points (APs) could allow an unauthenticated, adjacent attacker to cause an AP port to go into an error disabled state. The vulnerability occurs because BPDUs received from specific wireless clients are forwarded incorrectly. An attacker could exploit this vulnerability on the wireless network by sending a steady stream of crafted BPDU frames. A successful exploit could allow the attacker to cause a limited denial of service (DoS) attack because an AP port could go offline.
Una vulnerabilidad en la funcionalidad de reenvío de bridge protocol data unit (BPDU) de Cisco Aironet Access Points (APs), podría permitir a un atacante adyacente no autenticado causar que un puerto del AP entre en un estado de error deshabilitado. La vulnerabilidad se presenta porque las BPDU recibidas de clientes inalámbricos específicos son reenviadas incorrectamente. Un atacante podría explotar esta vulnerabilidad en la red inalámbrica mediante el envío de un flujo constante de tramas BPDU diseñadas. Una explotación con éxito podría permitir al atacante causar un ataque de denegación de servicio (DoS) limitado porque un puerto del AP podría desconectarse.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:Track
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2019-08-20 CVE Reserved
- 2019-10-16 CVE Published
- 2023-03-08 EPSS Updated
- 2024-11-21 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-20: Improper Input Validation
CAPEC
References (1)
| URL | Tag | Source |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191016-airo-dos | 2019-10-22 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Cisco Search vendor "Cisco" | Aironet 1540 Firmware Search vendor "Cisco" for product "Aironet 1540 Firmware" | < 8.5.151.0 Search vendor "Cisco" for product "Aironet 1540 Firmware" and version " < 8.5.151.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Aironet 1540 Search vendor "Cisco" for product "Aironet 1540" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Aironet 1540 Firmware Search vendor "Cisco" for product "Aironet 1540 Firmware" | >= 8.6 < 8.8.120.0 Search vendor "Cisco" for product "Aironet 1540 Firmware" and version " >= 8.6 < 8.8.120.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Aironet 1540 Search vendor "Cisco" for product "Aironet 1540" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Aironet 1540 Firmware Search vendor "Cisco" for product "Aironet 1540 Firmware" | >= 8.8.125.0 < 8.9.100.0 Search vendor "Cisco" for product "Aironet 1540 Firmware" and version " >= 8.8.125.0 < 8.9.100.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Aironet 1540 Search vendor "Cisco" for product "Aironet 1540" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Aironet 1560 Firmware Search vendor "Cisco" for product "Aironet 1560 Firmware" | < 8.5.151.0 Search vendor "Cisco" for product "Aironet 1560 Firmware" and version " < 8.5.151.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Aironet 1560 Search vendor "Cisco" for product "Aironet 1560" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Aironet 1560 Firmware Search vendor "Cisco" for product "Aironet 1560 Firmware" | >= 8.6 < 8.8.120.0 Search vendor "Cisco" for product "Aironet 1560 Firmware" and version " >= 8.6 < 8.8.120.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Aironet 1560 Search vendor "Cisco" for product "Aironet 1560" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Aironet 1560 Firmware Search vendor "Cisco" for product "Aironet 1560 Firmware" | >= 8.8.125.0 < 8.9.100.0 Search vendor "Cisco" for product "Aironet 1560 Firmware" and version " >= 8.8.125.0 < 8.9.100.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Aironet 1560 Search vendor "Cisco" for product "Aironet 1560" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Aironet 1800 Firmware Search vendor "Cisco" for product "Aironet 1800 Firmware" | < 8.5.151.0 Search vendor "Cisco" for product "Aironet 1800 Firmware" and version " < 8.5.151.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Aironet 1800 Search vendor "Cisco" for product "Aironet 1800" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Aironet 1800 Firmware Search vendor "Cisco" for product "Aironet 1800 Firmware" | >= 8.6 < 8.8.120.0 Search vendor "Cisco" for product "Aironet 1800 Firmware" and version " >= 8.6 < 8.8.120.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Aironet 1800 Search vendor "Cisco" for product "Aironet 1800" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Aironet 1800 Firmware Search vendor "Cisco" for product "Aironet 1800 Firmware" | >= 8.8.125.0 < 8.9.100.0 Search vendor "Cisco" for product "Aironet 1800 Firmware" and version " >= 8.8.125.0 < 8.9.100.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Aironet 1800 Search vendor "Cisco" for product "Aironet 1800" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Aironet 2800 Firmware Search vendor "Cisco" for product "Aironet 2800 Firmware" | < 8.5.151.0 Search vendor "Cisco" for product "Aironet 2800 Firmware" and version " < 8.5.151.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Aironet 2800 Search vendor "Cisco" for product "Aironet 2800" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Aironet 2800 Firmware Search vendor "Cisco" for product "Aironet 2800 Firmware" | >= 8.6 < 8.8.120.0 Search vendor "Cisco" for product "Aironet 2800 Firmware" and version " >= 8.6 < 8.8.120.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Aironet 2800 Search vendor "Cisco" for product "Aironet 2800" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Aironet 2800 Firmware Search vendor "Cisco" for product "Aironet 2800 Firmware" | >= 8.8.125.0 < 8.9.100.0 Search vendor "Cisco" for product "Aironet 2800 Firmware" and version " >= 8.8.125.0 < 8.9.100.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Aironet 2800 Search vendor "Cisco" for product "Aironet 2800" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Aironet 3800 Firmware Search vendor "Cisco" for product "Aironet 3800 Firmware" | < 8.5.151.0 Search vendor "Cisco" for product "Aironet 3800 Firmware" and version " < 8.5.151.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Aironet 3800 Search vendor "Cisco" for product "Aironet 3800" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Aironet 3800 Firmware Search vendor "Cisco" for product "Aironet 3800 Firmware" | >= 8.6 < 8.8.120.0 Search vendor "Cisco" for product "Aironet 3800 Firmware" and version " >= 8.6 < 8.8.120.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Aironet 3800 Search vendor "Cisco" for product "Aironet 3800" | - | - |
Safe
|
| Cisco Search vendor "Cisco" | Aironet 3800 Firmware Search vendor "Cisco" for product "Aironet 3800 Firmware" | >= 8.8.125.0 < 8.9.100.0 Search vendor "Cisco" for product "Aironet 3800 Firmware" and version " >= 8.8.125.0 < 8.9.100.0" | - |
Affected
| in | Cisco Search vendor "Cisco" | Aironet 3800 Search vendor "Cisco" for product "Aironet 3800" | - | - |
Safe
|