CVE-2023-20112

A vulnerability in Cisco access point (AP) software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient validation of certain parameters within 802.11 frames. An attacker could exploit this vulnerability by sending a wireless 802.11 association request frame with crafted parameters to an affected device. A successful exploit could allow the attacker to cause an unexpected reload of an affected device, resulting in a DoS condition.

Severity	HIGH
CVSS	7.4
CWE	CWE-126
KEV
Published	3 years ago
Modified	1 year ago

Related Products

Product	Advisory
Cisco RV Series Routers	cisco-sa-ap-assoc-dos-D2SunWK2
Cisco Nexus Dashboard	cisco-sa-ap-assoc-dos-D2SunWK2
Cisco IOS XE Software	cisco-sa-ap-assoc-dos-D2SunWK2
Cisco IOS Software	cisco-sa-ap-assoc-dos-D2SunWK2
Cisco Business Wireless Access Point Software	cisco-sa-ap-assoc-dos-D2SunWK2
Cisco Aironet Access Point Software (IOS XE Controller)	cisco-sa-ap-assoc-dos-D2SunWK2
Cisco Aironet Access Point Software	cisco-sa-ap-assoc-dos-D2SunWK2