var-201608-0224
Vulnerability from variot
The Aggregated MAC Protocol Data Unit (AMPDU) implementation on Cisco Aironet 1800, 2800, and 3800 devices with software before 8.2.121.0 and 8.3.x before 8.3.102.0 allows remote attackers to cause a denial of service (device reload) via a crafted AMPDU header, aka Bug ID CSCuz56288. Cisco Aironet AccessPoints is a set of wireless access point devices from Cisco. A denial of service vulnerability exists in the AggregatedMACProtocolDataUnit (AMPDU) implementation in the Cisco Aironet AccessPoints platform. An attacker could exploit the vulnerability to send a device overload by sending a specially crafted AMPDU packet. Attackers can exploit this issue to reload the affected device, denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCuz56288. Cisco Aironet 1800, 2800, and 3800 are all routers of Cisco (Cisco). The following devices and versions are affected: Cisco Aironet 1800, 2800, 3800, versions prior to 8.2.121.0 and versions 8.3.x prior to 8.3.102.0
Show details on source website{
"affected_products": {
"_id": null,
"data": [
{
"_id": null,
"model": "aironet access point software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.2\\(100.0\\)"
},
{
"_id": null,
"model": "aironet access point software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.1\\(15.14\\)"
},
{
"_id": null,
"model": "aironet access point software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.1\\(112.3\\)"
},
{
"_id": null,
"model": "aironet access point software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.2\\(102.43\\)"
},
{
"_id": null,
"model": "aironet access point software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.1\\(131.0\\)"
},
{
"_id": null,
"model": "aironet access point software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.1\\(112.4\\)"
},
{
"_id": null,
"model": "aironet access point software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.3.0"
},
{
"_id": null,
"model": "aironet access point software",
"scope": "lt",
"trust": 0.8,
"vendor": "cisco",
"version": "8.3.x"
},
{
"_id": null,
"model": "aironet access point software",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "8.3.102.0"
},
{
"_id": null,
"model": "aironet series access point",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "3800"
},
{
"_id": null,
"model": "aironet series access point",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "2800"
},
{
"_id": null,
"model": "aironet series access point",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "1800"
},
{
"_id": null,
"model": "aironet series access points",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "38000"
},
{
"_id": null,
"model": "aironet series access points",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "28000"
},
{
"_id": null,
"model": "aironet series access points",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "18000"
},
{
"_id": null,
"model": "aironet series access points",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "38008.3.102.0"
},
{
"_id": null,
"model": "aironet series access points",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "38008.2.121.0"
},
{
"_id": null,
"model": "aironet series access points",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "28008.3.102.0"
},
{
"_id": null,
"model": "aironet series access points",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "28008.2.121.0"
},
{
"_id": null,
"model": "aironet series access points",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "18008.3.102.0"
},
{
"_id": null,
"model": "aironet series access points",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "18008.2.121.0"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06435"
},
{
"db": "BID",
"id": "92508"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004433"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-336"
},
{
"db": "NVD",
"id": "CVE-2016-6361"
}
]
},
"configurations": {
"_id": null,
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:cisco:aironet_access_point_software",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2016-004433"
}
]
},
"credits": {
"_id": null,
"data": "Cisco",
"sources": [
{
"db": "BID",
"id": "92508"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-336"
}
],
"trust": 0.9
},
"cve": "CVE-2016-6361",
"cvss": {
"_id": null,
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 6.1,
"confidentialityImpact": "NONE",
"exploitabilityScore": 6.5,
"id": "CVE-2016-6361",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 1.9,
"vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "CNVD-2016-06435",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 6.1,
"confidentialityImpact": "NONE",
"exploitabilityScore": 6.5,
"id": "VHN-95181",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:A/AC:L/AU:N/C:N/I:N/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "ADJACENT",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"exploitabilityScore": 2.8,
"id": "CVE-2016-6361",
"impactScore": 3.6,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2016-6361",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "NVD",
"id": "CVE-2016-6361",
"trust": 0.8,
"value": "Medium"
},
{
"author": "CNVD",
"id": "CNVD-2016-06435",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201608-336",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-95181",
"trust": 0.1,
"value": "MEDIUM"
},
{
"author": "VULMON",
"id": "CVE-2016-6361",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06435"
},
{
"db": "VULHUB",
"id": "VHN-95181"
},
{
"db": "VULMON",
"id": "CVE-2016-6361"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004433"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-336"
},
{
"db": "NVD",
"id": "CVE-2016-6361"
}
]
},
"description": {
"_id": null,
"data": "The Aggregated MAC Protocol Data Unit (AMPDU) implementation on Cisco Aironet 1800, 2800, and 3800 devices with software before 8.2.121.0 and 8.3.x before 8.3.102.0 allows remote attackers to cause a denial of service (device reload) via a crafted AMPDU header, aka Bug ID CSCuz56288. Cisco Aironet AccessPoints is a set of wireless access point devices from Cisco. A denial of service vulnerability exists in the AggregatedMACProtocolDataUnit (AMPDU) implementation in the Cisco Aironet AccessPoints platform. An attacker could exploit the vulnerability to send a device overload by sending a specially crafted AMPDU packet. \nAttackers can exploit this issue to reload the affected device, denying service to legitimate users. \nThis issue is being tracked by Cisco Bug ID CSCuz56288. Cisco Aironet 1800, 2800, and 3800 are all routers of Cisco (Cisco). The following devices and versions are affected: Cisco Aironet 1800, 2800, 3800, versions prior to 8.2.121.0 and versions 8.3.x prior to 8.3.102.0",
"sources": [
{
"db": "NVD",
"id": "CVE-2016-6361"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004433"
},
{
"db": "CNVD",
"id": "CNVD-2016-06435"
},
{
"db": "BID",
"id": "92508"
},
{
"db": "VULHUB",
"id": "VHN-95181"
},
{
"db": "VULMON",
"id": "CVE-2016-6361"
}
],
"trust": 2.61
},
"external_ids": {
"_id": null,
"data": [
{
"db": "NVD",
"id": "CVE-2016-6361",
"trust": 3.5
},
{
"db": "BID",
"id": "92508",
"trust": 2.7
},
{
"db": "SECTRACK",
"id": "1036648",
"trust": 1.2
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004433",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201608-336",
"trust": 0.7
},
{
"db": "CNVD",
"id": "CNVD-2016-06435",
"trust": 0.6
},
{
"db": "NSFOCUS",
"id": "34591",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-95181",
"trust": 0.1
},
{
"db": "VULMON",
"id": "CVE-2016-6361",
"trust": 0.1
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06435"
},
{
"db": "VULHUB",
"id": "VHN-95181"
},
{
"db": "VULMON",
"id": "CVE-2016-6361"
},
{
"db": "BID",
"id": "92508"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004433"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-336"
},
{
"db": "NVD",
"id": "CVE-2016-6361"
}
]
},
"id": "VAR-201608-0224",
"iot": {
"_id": null,
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06435"
},
{
"db": "VULHUB",
"id": "VHN-95181"
}
],
"trust": 1.19107143
},
"iot_taxonomy": {
"_id": null,
"data": [
{
"category": [
"Network device"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06435"
}
]
},
"last_update_date": "2024-11-23T23:09:11.783000Z",
"patch": {
"_id": null,
"data": [
{
"title": "cisco-sa-20160817-aap",
"trust": 0.8,
"url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160817-aap"
},
{
"title": "Patch for CiscoAironetAccessPoints Platform Denial of Service Vulnerability (CNVD-2016-06435)",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/80566"
},
{
"title": "Cisco Aironet 1800 , 2800 and 3800 Repair measures for platform denial of service vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=63702"
},
{
"title": "Cisco: Cisco Aironet 1800, 2800, and 3800 Series Access Point Platforms AMPDU Denial of Service Vulnerability",
"trust": 0.1,
"url": "https://vulmon.com/vendoradvisory?qidtp=cisco_security_advisories_and_alerts_ciscoproducts\u0026qid=cisco-sa-20160817-aap"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06435"
},
{
"db": "VULMON",
"id": "CVE-2016-6361"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004433"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-336"
}
]
},
"problemtype_data": {
"_id": null,
"data": [
{
"problemtype": "CWE-20",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-95181"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004433"
},
{
"db": "NVD",
"id": "CVE-2016-6361"
}
]
},
"references": {
"_id": null,
"data": [
{
"trust": 2.4,
"url": "http://www.securityfocus.com/bid/92508"
},
{
"trust": 2.2,
"url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20160817-aap"
},
{
"trust": 1.2,
"url": "http://www.securitytracker.com/id/1036648"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-6361"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-6361"
},
{
"trust": 0.6,
"url": "http://www.nsfocus.net/vulndb/34591"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/cisco/web/solutions/small_business/products/wireless/aironet_series_access_points/index.html"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/"
},
{
"trust": 0.1,
"url": "https://cwe.mitre.org/data/definitions/20.html"
},
{
"trust": 0.1,
"url": "https://nvd.nist.gov"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06435"
},
{
"db": "VULHUB",
"id": "VHN-95181"
},
{
"db": "VULMON",
"id": "CVE-2016-6361"
},
{
"db": "BID",
"id": "92508"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004433"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-336"
},
{
"db": "NVD",
"id": "CVE-2016-6361"
}
]
},
"sources": {
"_id": null,
"data": [
{
"db": "CNVD",
"id": "CNVD-2016-06435",
"ident": null
},
{
"db": "VULHUB",
"id": "VHN-95181",
"ident": null
},
{
"db": "VULMON",
"id": "CVE-2016-6361",
"ident": null
},
{
"db": "BID",
"id": "92508",
"ident": null
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004433",
"ident": null
},
{
"db": "CNNVD",
"id": "CNNVD-201608-336",
"ident": null
},
{
"db": "NVD",
"id": "CVE-2016-6361",
"ident": null
}
]
},
"sources_release_date": {
"_id": null,
"data": [
{
"date": "2016-08-22T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-06435",
"ident": null
},
{
"date": "2016-08-22T00:00:00",
"db": "VULHUB",
"id": "VHN-95181",
"ident": null
},
{
"date": "2016-08-22T00:00:00",
"db": "VULMON",
"id": "CVE-2016-6361",
"ident": null
},
{
"date": "2016-08-17T00:00:00",
"db": "BID",
"id": "92508",
"ident": null
},
{
"date": "2016-08-23T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-004433",
"ident": null
},
{
"date": "2016-08-18T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201608-336",
"ident": null
},
{
"date": "2016-08-22T10:59:10.043000",
"db": "NVD",
"id": "CVE-2016-6361",
"ident": null
}
]
},
"sources_update_date": {
"_id": null,
"data": [
{
"date": "2016-08-19T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-06435",
"ident": null
},
{
"date": "2016-12-12T00:00:00",
"db": "VULHUB",
"id": "VHN-95181",
"ident": null
},
{
"date": "2016-12-12T00:00:00",
"db": "VULMON",
"id": "CVE-2016-6361",
"ident": null
},
{
"date": "2016-08-17T00:00:00",
"db": "BID",
"id": "92508",
"ident": null
},
{
"date": "2016-08-23T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-004433",
"ident": null
},
{
"date": "2016-08-23T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201608-336",
"ident": null
},
{
"date": "2024-11-21T02:55:58.763000",
"db": "NVD",
"id": "CVE-2016-6361",
"ident": null
}
]
},
"threat_type": {
"_id": null,
"data": "specific network environment",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201608-336"
}
],
"trust": 0.6
},
"title": {
"_id": null,
"data": "plural Cisco Aironet Device software Aggregated MAC Protocol Data Unit Service disruption in implementations (DoS) Vulnerabilities",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2016-004433"
}
],
"trust": 0.8
},
"type": {
"_id": null,
"data": "input validation",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201608-336"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.