CVE-2022-20945

A vulnerability in the 802.11 association frame validation of Cisco Catalyst 9100 Series Access Points (APs) could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation of certain parameters within association request frames received by the AP. An attacker could exploit this vulnerability by sending a crafted 802.11 association request to a nearby device. An exploit could allow the attacker to unexpectedly reload the device, resulting in a DoS condition.

Severity	HIGH
CVSS	7.4
CWE	CWE-120
KEV
Published	3 years ago
Modified	1 year ago

Related Products

Product	Advisory
Cisco RV Series Routers	cisco-sa-ap-assoc-dos-EgVqtON8
Cisco Nexus Dashboard	cisco-sa-ap-assoc-dos-EgVqtON8
Cisco IOS XE Software	cisco-sa-ap-assoc-dos-EgVqtON8
Cisco IOS Software	cisco-sa-ap-assoc-dos-EgVqtON8
Cisco Aironet Access Point Software (IOS XE Controller)	cisco-sa-ap-assoc-dos-EgVqtON8
Cisco Aironet Access Point Software	cisco-sa-ap-assoc-dos-EgVqtON8