CVE-2019-1826

A vulnerability in the quality of service (QoS) feature of Cisco Aironet Series Access Points (APs) could allow an authenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation on QoS fields within Wi-Fi frames by the affected device. An attacker could exploit this vulnerability by sending malformed Wi-Fi frames to an affected device. A successful exploit could allow the attacker to cause the affected device to crash, resulting in a DoS condition.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:cisco:aironet_access_point_firmware:-:*:*:*:*:*:*:*
OR cpe:2.3:h:cisco:aironet_1562d:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_1562e:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_1562i:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_2800e:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_2800i:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_3800e:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_3800i:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_3800p:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_4800:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:cisco:aironet_access_point_firmware:8.5\(131.3\):*:*:*:*:*:*:*
OR cpe:2.3:h:cisco:aironet_1850e:-:*:*:*:*:*:*:*
cpe:2.3:h:cisco:aironet_1850i:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2019-04-18 02:29

Updated : 2024-02-28 17:08


NVD link : CVE-2019-1826

Mitre link : CVE-2019-1826

CVE.ORG link : CVE-2019-1826


JSON object : View

Products Affected

cisco

  • aironet_1850i
  • aironet_1562i
  • aironet_3800e
  • aironet_3800p
  • aironet_1850e
  • aironet_2800e
  • aironet_1562d
  • aironet_access_point_firmware
  • aironet_3800i
  • aironet_1562e
  • aironet_4800
  • aironet_2800i
CWE
CWE-20

Improper Input Validation