SB2019071720 - Input validation error in Cisco IOS Access Points Software (APs)



SB2019071720 - Input validation error in Cisco IOS Access Points Software (APs)

Published: July 17, 2019 Updated: July 18, 2019

Security Bulletin ID SB2019071720
CSH Severity
Medium
Patch available
YES
Number of vulnerabilities 1
Exploitation vector Adjecent network
Highest impact Denial of service

Breakdown by Severity

Medium 100%
  • Low
  • Medium
  • High
  • Critical

Description

This security bulletin contains information about 1 vulnerability.


1) Input validation error (CVE-ID: CVE-2019-1920)

CWE-ID: CWE-20 - Improper input validation

CVSSv4: CVSS:4.0/AV:A/AC:L/AT:N/PR:N/UI:N/VC:N/VI:N/VA:H/SC:N/SI:N/SA:N/E:U/U:Green


The vulnerability allows an attacker to perform a denial of service (DoS) attack.

The vulnerability exists due a lack of complete error handling condition for client authentication requests sent to the 802.11r Fast Transition (FT) implementation. An attacker can send crafted authentication request traffic to the targeted interface and cause the device to restart unexpectedly.


Remediation

Install update from vendor's website.