gsd-2023-20268
Vulnerability from gsd
Modified
2023-12-13 01:20
Details
A vulnerability in the packet processing functionality of Cisco access point (AP) software could allow an unauthenticated, adjacent attacker to exhaust resources on an affected device.
This vulnerability is due to insufficient management of resources when handling certain types of traffic. An attacker could exploit this vulnerability by sending a series of specific wireless packets to an affected device. A successful exploit could allow the attacker to consume resources on an affected device. A sustained attack could lead to the disruption of the Control and Provisioning of Wireless Access Points (CAPWAP) tunnel and intermittent loss of wireless client traffic.
Aliases
Aliases
{ GSD: { alias: "CVE-2023-20268", id: "GSD-2023-20268", }, gsd: { metadata: { exploitCode: "unknown", remediation: "unknown", reportConfidence: "confirmed", type: "vulnerability", }, osvSchema: { aliases: [ "CVE-2023-20268", ], details: "A vulnerability in the packet processing functionality of Cisco access point (AP) software could allow an unauthenticated, adjacent attacker to exhaust resources on an affected device.\r\n\r This vulnerability is due to insufficient management of resources when handling certain types of traffic. An attacker could exploit this vulnerability by sending a series of specific wireless packets to an affected device. A successful exploit could allow the attacker to consume resources on an affected device. A sustained attack could lead to the disruption of the Control and Provisioning of Wireless Access Points (CAPWAP) tunnel and intermittent loss of wireless client traffic.", id: "GSD-2023-20268", modified: "2023-12-13T01:20:28.715868Z", schema_version: "1.4.0", }, }, namespaces: { "cve.org": { CVE_data_meta: { ASSIGNER: "psirt@cisco.com", ID: "CVE-2023-20268", STATE: "PUBLIC", }, affects: { vendor: { vendor_data: [ { product: { product_data: [ { product_name: "Cisco Aironet Access Point Software", version: { version_data: [ { version_affected: "=", version_value: "8.2.100.0", }, { version_affected: "=", version_value: "8.2.130.0", }, { version_affected: "=", version_value: "8.2.111.0", }, { version_affected: "=", version_value: "8.2.110.0", }, { version_affected: "=", version_value: "8.2.121.0", }, { version_affected: "=", version_value: "8.2.141.0", }, { version_affected: "=", version_value: "8.2.151.0", }, { version_affected: "=", version_value: "8.2.160.0", }, { version_affected: "=", version_value: "8.2.161.0", }, { version_affected: "=", version_value: "8.2.164.0", }, { version_affected: "=", version_value: "8.2.166.0", }, { version_affected: "=", version_value: "8.2.170.0", }, { version_affected: "=", version_value: "8.2.163.0", }, { version_affected: "=", version_value: "8.3.102.0", }, { version_affected: "=", version_value: "8.3.111.0", }, { version_affected: "=", version_value: "8.3.112.0", }, { version_affected: "=", version_value: "8.3.121.0", }, { version_affected: "=", version_value: "8.3.122.0", }, { version_affected: "=", version_value: "8.3.130.0", }, { version_affected: "=", version_value: "8.3.131.0", }, { version_affected: "=", version_value: "8.3.132.0", }, { version_affected: "=", version_value: "8.3.133.0", }, { version_affected: "=", version_value: "8.3.140.0", }, { version_affected: "=", version_value: "8.3.141.0", }, { version_affected: "=", version_value: "8.3.143.0", }, { version_affected: "=", version_value: "8.3.150.0", }, { version_affected: "=", version_value: "8.3.108.0", }, { version_affected: "=", version_value: "8.3.90.53", }, { version_affected: "=", version_value: "8.3.104.46", }, { version_affected: "=", version_value: "8.3.200.200", }, { version_affected: "=", version_value: "8.3.104.64", }, { version_affected: "=", version_value: "8.3.15.165", }, { version_affected: "=", version_value: "8.3.90.11", }, { version_affected: "=", version_value: "8.3.135.0", }, { version_affected: "=", version_value: "8.3.104.14", }, { version_affected: "=", version_value: "8.3.90.36", }, { version_affected: "=", version_value: "8.3.15.142", }, { version_affected: "=", version_value: "8.3.104.37", }, { version_affected: "=", version_value: "8.3.15.117", }, { version_affected: "=", version_value: "8.3.15.120", }, { version_affected: "=", version_value: "8.3.15.25", }, { version_affected: "=", version_value: "8.3.15.158", }, { version_affected: "=", version_value: "8.3.15.118", }, { version_affected: "=", version_value: "8.3.90.25", }, { version_affected: "=", version_value: "8.3.15.169", }, { version_affected: "=", version_value: "8.3.90.58", }, { version_affected: "=", version_value: "8.4.100.0", }, { version_affected: "=", version_value: "8.4.1.199", }, { version_affected: "=", version_value: "8.4.1.91", }, { version_affected: "=", version_value: "8.4.1.142", }, { version_affected: "=", version_value: "8.4.1.175", }, { version_affected: "=", version_value: "8.4.1.218", }, { version_affected: "=", version_value: "8.4.1.92", }, { version_affected: "=", version_value: "8.5.103.0", }, { version_affected: "=", version_value: "8.5.105.0", }, { version_affected: "=", version_value: "8.5.110.0", }, { version_affected: "=", version_value: "8.5.120.0", }, { version_affected: "=", version_value: "8.5.131.0", }, { version_affected: "=", version_value: "8.5.140.0", }, { version_affected: "=", version_value: "8.5.135.0", }, { version_affected: "=", version_value: "8.5.151.0", }, { version_affected: "=", version_value: "8.5.101.0", }, { version_affected: "=", version_value: "8.5.102.0", }, { version_affected: "=", version_value: "8.5.161.0", }, { version_affected: "=", version_value: "8.5.160.0", }, { version_affected: "=", version_value: "8.5.100.0", }, { version_affected: "=", version_value: "8.5.171.0", }, { version_affected: "=", version_value: "8.5.164.0", }, { version_affected: "=", version_value: "8.5.182.0", }, { version_affected: "=", version_value: "8.5.182.11 ME", }, { version_affected: "=", version_value: "8.7.102.0", }, { version_affected: "=", version_value: "8.7.106.0", }, { version_affected: "=", version_value: "8.7.1.16", }, { version_affected: "=", version_value: "8.8.100.0", }, { version_affected: "=", version_value: "8.8.111.0", }, { version_affected: "=", version_value: "8.8.120.0", }, { version_affected: "=", version_value: "8.8.125.0", }, { version_affected: "=", version_value: "8.8.130.0", }, { version_affected: "=", version_value: "8.6.101.0", }, { version_affected: "=", version_value: "8.6.1.84", }, { version_affected: "=", version_value: "8.6.1.70", }, { version_affected: "=", version_value: "8.6.1.71", }, { version_affected: "=", version_value: "8.9.100.0", }, { version_affected: "=", version_value: "8.9.111.0", }, { version_affected: "=", version_value: "8.10.105.0", }, { version_affected: "=", version_value: "8.10.111.0", }, { version_affected: "=", version_value: "8.10.130.0", }, { version_affected: "=", version_value: "8.10.112.0", }, { version_affected: "=", version_value: "8.10.122.0", }, { version_affected: "=", version_value: "8.10.113.0", }, { version_affected: "=", version_value: "8.10.121.0", }, { version_affected: "=", version_value: "8.10.141.0", }, { version_affected: "=", version_value: "8.10.142.0", }, { version_affected: "=", version_value: "8.10.151.0", }, { version_affected: "=", version_value: "8.10.150.0", }, { version_affected: "=", version_value: "8.10.171.0", }, { version_affected: "=", version_value: "8.10.181.0", }, { version_affected: "=", version_value: "8.10.182.0", }, { version_affected: "=", version_value: "8.10.161.0", }, { version_affected: "=", version_value: "8.10.170.0", }, { version_affected: "=", version_value: "8.10.183.0", }, { version_affected: "=", version_value: "8.10.162.0", }, ], }, }, { product_name: "Cisco Business Wireless Access Point Software", version: { version_data: [ { version_affected: "=", version_value: "10.0.1.0", }, { version_affected: "=", version_value: "10.0.2.0", }, { version_affected: "=", version_value: "10.1.1.0", }, { version_affected: "=", version_value: "10.1.2.0", }, { version_affected: "=", version_value: "10.2.1.0", }, { version_affected: "=", version_value: "10.2.2.0", }, { version_affected: "=", version_value: "10.3.1.0", }, { version_affected: "=", version_value: "10.3.1.1", }, { version_affected: "=", version_value: "10.3.2.0", }, { version_affected: "=", version_value: "10.4.1.0", }, { version_affected: "=", version_value: "10.4.2.0", }, { version_affected: "=", version_value: "10.6.1.0", }, { version_affected: "=", version_value: "10.7.1.0", }, { version_affected: "=", version_value: "10.8.1.0", }, { version_affected: "=", version_value: "10.5.2.0", }, ], }, }, { product_name: "Cisco Aironet Access Point Software (IOS XE Controller)", version: { version_data: [ { version_affected: "=", version_value: "16.10.1e", }, { version_affected: "=", version_value: "16.10.1", }, { version_affected: "=", version_value: "17.1.1t", }, { version_affected: "=", version_value: "17.1.1s", }, { version_affected: "=", version_value: "17.1.1", }, { version_affected: "=", version_value: "16.11.1a", }, { version_affected: "=", version_value: "16.11.1", }, { version_affected: "=", version_value: "16.11.1c", }, { version_affected: "=", version_value: "16.11.1b", }, { version_affected: "=", version_value: "16.12.1s", }, { version_affected: "=", version_value: "16.12.4", }, { version_affected: "=", version_value: "16.12.1", }, { version_affected: "=", version_value: "16.12.2s", }, { version_affected: "=", version_value: "16.12.1t", }, { version_affected: "=", version_value: "16.12.4a", }, { version_affected: "=", version_value: "16.12.5", }, { version_affected: "=", version_value: "16.12.3", }, { version_affected: "=", version_value: "16.12.6", }, { version_affected: "=", version_value: "16.12.8", }, { version_affected: "=", version_value: "16.12.7", }, { version_affected: "=", version_value: "16.12.6a", }, { version_affected: "=", version_value: "17.3.1", }, { version_affected: "=", version_value: "17.3.2a", }, { version_affected: "=", version_value: "17.3.3", }, { version_affected: "=", version_value: "17.3.4", }, { version_affected: "=", version_value: "17.3.5", }, { version_affected: "=", version_value: "17.3.2", }, { version_affected: "=", version_value: "17.3.4c", }, { version_affected: "=", version_value: "17.3.5a", }, { version_affected: "=", version_value: "17.3.5b", }, { version_affected: "=", version_value: "17.3.6", }, { version_affected: "=", version_value: "17.2.1", }, { version_affected: "=", version_value: "17.2.1a", }, { version_affected: "=", version_value: "17.2.3", }, { version_affected: "=", version_value: "17.2.2", }, { version_affected: "=", version_value: "17.5.1", }, { version_affected: "=", version_value: "17.4.1", }, { version_affected: "=", version_value: "17.4.2", }, { version_affected: "=", version_value: "17.6.1", }, { version_affected: "=", version_value: "17.6.2", }, { version_affected: "=", version_value: "17.6.3", }, { version_affected: "=", version_value: "17.6.4", }, { version_affected: "=", version_value: "17.6.5", }, { version_affected: "=", version_value: "17.10.1", }, { version_affected: "=", version_value: "17.9.1", }, { version_affected: "=", version_value: "17.9.2", }, { version_affected: "=", version_value: "17.7.1", }, { version_affected: "=", version_value: "17.8.1", }, ], }, }, ], }, vendor_name: "Cisco", }, ], }, }, data_format: "MITRE", data_type: "CVE", data_version: "4.0", description: { description_data: [ { lang: "eng", value: "A vulnerability in the packet processing functionality of Cisco access point (AP) software could allow an unauthenticated, adjacent attacker to exhaust resources on an affected device.\r\n\r This vulnerability is due to insufficient management of resources when handling certain types of traffic. An attacker could exploit this vulnerability by sending a series of specific wireless packets to an affected device. A successful exploit could allow the attacker to consume resources on an affected device. A sustained attack could lead to the disruption of the Control and Provisioning of Wireless Access Points (CAPWAP) tunnel and intermittent loss of wireless client traffic.", }, ], }, exploit: [ { lang: "en", value: "The Cisco PSIRT is not aware of any public announcements or malicious use of the vulnerability that is described in this advisory.", }, ], impact: { cvss: [ { attackComplexity: "LOW", attackVector: "ADJACENT_NETWORK", availabilityImpact: "LOW", baseScore: 4.7, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L", version: "3.1", }, ], }, problemtype: { problemtype_data: [ { description: [ { cweId: "CWE-400", lang: "eng", value: "Uncontrolled Resource Consumption", }, ], }, ], }, references: { reference_data: [ { name: "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-dos-capwap-DDMCZS4m", refsource: "MISC", url: "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-dos-capwap-DDMCZS4m", }, ], }, source: { advisory: "cisco-sa-ap-dos-capwap-DDMCZS4m", defects: [ "CSCwe75371", ], discovery: "INTERNAL", }, }, "nvd.nist.gov": { cve: { configurations: [ { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:*", matchCriteriaId: "A084C31F-54F0-444E-A2F0-817F1C8B3BFE", versionEndExcluding: "8.10.190.0", vulnerable: true, }, ], negate: false, operator: "OR", }, ], }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:cisco:catalyst_9800_embedded_wireless_controller_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "649DA1E0-2F09-4855-9715-9574FC28287B", versionEndExcluding: "17.3.8", vulnerable: true, }, { criteria: "cpe:2.3:o:cisco:catalyst_9800_embedded_wireless_controller_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "1B2179D2-0545-4DEB-8B56-16299D22E171", versionEndExcluding: "17.6.6", versionStartIncluding: "17.4.0", vulnerable: true, }, { criteria: "cpe:2.3:o:cisco:catalyst_9800_embedded_wireless_controller_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "53EA3BC3-D2DF-48E4-AEBB-B4DE252F1D9D", versionEndExcluding: "17.9.4", versionStartIncluding: "17.8.0", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:cisco:catalyst_9800_embedded_wireless_controller:-:*:*:*:*:*:*:*", matchCriteriaId: "78706517-83F4-4D44-A6EC-B78ADCEABAC0", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:cisco:business_150ax_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "E877AC2A-766E-476C-8173-F31BBB32C7CE", versionEndExcluding: "10.6.2.0", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:cisco:business_150ax:-:*:*:*:*:*:*:*", matchCriteriaId: "AB2B555E-1523-4C62-A91D-EE1F3F1200EC", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, { nodes: [ { cpeMatch: [ { criteria: "cpe:2.3:o:cisco:business_151axm_firmware:*:*:*:*:*:*:*:*", matchCriteriaId: "B98D3109-7D15-4736-890A-A4798C4CF08D", versionEndExcluding: "10.6.2.0", vulnerable: true, }, ], negate: false, operator: "OR", }, { cpeMatch: [ { criteria: "cpe:2.3:h:cisco:business_151axm:-:*:*:*:*:*:*:*", matchCriteriaId: "8760865B-4AB3-4A1A-960D-FF6974A7AC06", vulnerable: false, }, ], negate: false, operator: "OR", }, ], operator: "AND", }, ], descriptions: [ { lang: "en", value: "A vulnerability in the packet processing functionality of Cisco access point (AP) software could allow an unauthenticated, adjacent attacker to exhaust resources on an affected device.\r\n\r This vulnerability is due to insufficient management of resources when handling certain types of traffic. An attacker could exploit this vulnerability by sending a series of specific wireless packets to an affected device. A successful exploit could allow the attacker to consume resources on an affected device. A sustained attack could lead to the disruption of the Control and Provisioning of Wireless Access Points (CAPWAP) tunnel and intermittent loss of wireless client traffic.", }, { lang: "es", value: "Una vulnerabilidad en la funcionalidad de procesamiento de paquetes del software del punto de acceso (AP) de Cisco podrĂa permitir que un atacante adyacente no autenticado agote los recursos de un dispositivo afectado. Esta vulnerabilidad se debe a una gestiĂłn insuficiente de los recursos a la hora de gestionar determinados tipos de tráfico. Un atacante podrĂa aprovechar esta vulnerabilidad enviando una serie de paquetes inalámbricos especĂficos a un dispositivo afectado. Un exploit exitoso podrĂa permitir al atacante consumir recursos en un dispositivo afectado. Un ataque sostenido podrĂa provocar la interrupciĂłn del tĂşnel de control y aprovisionamiento de puntos de acceso inalámbricos (CAPWAP) y la pĂ©rdida intermitente de tráfico de clientes inalámbricos.", }, ], id: "CVE-2023-20268", lastModified: "2024-01-25T17:15:42.763", metrics: { cvssMetricV31: [ { cvssData: { attackComplexity: "LOW", attackVector: "ADJACENT_NETWORK", availabilityImpact: "LOW", baseScore: 4.7, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 1.4, source: "nvd@nist.gov", type: "Primary", }, { cvssData: { attackComplexity: "LOW", attackVector: "ADJACENT_NETWORK", availabilityImpact: "LOW", baseScore: 4.7, baseSeverity: "MEDIUM", confidentialityImpact: "NONE", integrityImpact: "NONE", privilegesRequired: "NONE", scope: "CHANGED", userInteraction: "NONE", vectorString: "CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L", version: "3.1", }, exploitabilityScore: 2.8, impactScore: 1.4, source: "ykramarz@cisco.com", type: "Secondary", }, ], }, published: "2023-09-27T18:15:11.827", references: [ { source: "ykramarz@cisco.com", tags: [ "Vendor Advisory", ], url: "https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-dos-capwap-DDMCZS4m", }, ], sourceIdentifier: "ykramarz@cisco.com", vulnStatus: "Modified", weaknesses: [ { description: [ { lang: "en", value: "CWE-400", }, ], source: "nvd@nist.gov", type: "Primary", }, { description: [ { lang: "en", value: "CWE-400", }, ], source: "ykramarz@cisco.com", type: "Secondary", }, ], }, }, }, }
Log in or create an account to share your comment.
Security Advisory comment format.
This schema specifies the format of a comment related to a security advisory.
Title of the comment
Description of the comment
Loading…
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.