CVE-2023-20112

A vulnerability in Cisco access point (AP) software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient validation of certain parameters within 802.11 frames. An attacker could exploit this vulnerability by sending a wireless 802.11 association request frame with crafted parameters to an affected device. A successful exploit could allow the attacker to cause an unexpected reload of an affected device, resulting in a DoS condition.

CVSS v3 6.5 MEDIUM

6.5^/10

CVSS v3 : MEDIUM

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 3.6

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

References

Link	Resource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-assoc-dos-D2SunWK2	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:cisco:business_150ax_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:business_150ax:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:cisco:business_151axm_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:business_151axm:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:cisco:catalyst_9105ax_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9105ax:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:cisco:catalyst_9105axi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9105axi:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:cisco:catalyst_9105axw_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9105axw:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:cisco:catalyst_9105i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9105i:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:cisco:catalyst_9105w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9105w:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:cisco:catalyst_9115_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9115:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:cisco:catalyst_9115ax_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9115ax:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:cisco:catalyst_9115axe_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9115axe:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:cisco:catalyst_9115axi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9115axi:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:cisco:catalyst_9117_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9117:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:cisco:catalyst_9117ax_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9117ax:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:cisco:catalyst_9117axi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9117axi:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:cisco:catalyst_9120_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9120:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:cisco:catalyst_9120ax_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9120ax:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:cisco:catalyst_9120axe_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9120axe:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:cisco:catalyst_9120axi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9120axi:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:cisco:catalyst_9120axp_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9120axp:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:cisco:catalyst_9124_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9124:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:cisco:catalyst_9124ax_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9124ax:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:cisco:catalyst_9124axd_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9124axd:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:cisco:catalyst_9124axi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9124axi:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:cisco:catalyst_9130_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9130:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:cisco:catalyst_9130ax_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9130ax:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:cisco:catalyst_9130axe_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9130axe:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:cisco:catalyst_9130axi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9130axi:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:cisco:catalyst_9136_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9136:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:cisco:catalyst_9162_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9162:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:cisco:catalyst_9164_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9164:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:cisco:catalyst_9166_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9166:-:*:*:*:*:*:*:*

History

No history.

Information

Published : 2023-03-23 17:15

Updated : 2024-02-28 20:13

NVD link : CVE-2023-20112

Mitre link : CVE-2023-20112

CVE.ORG link : CVE-2023-20112

JSON object : View

Products Affected

cisco

catalyst_9120ax_firmware
business_151axm_firmware
catalyst_9115axe
catalyst_9115_firmware
catalyst_9120axe
catalyst_9105ax_firmware
catalyst_9117axi
catalyst_9130
business_150ax_firmware
business_150ax
catalyst_9105i
catalyst_9130axe_firmware
catalyst_9120
catalyst_9124axi
catalyst_9164
catalyst_9120axi_firmware
catalyst_9105axw
catalyst_9166_firmware
catalyst_9105axi
catalyst_9115ax_firmware
catalyst_9124ax
business_151axm
catalyst_9166
catalyst_9130axi_firmware
catalyst_9124axd_firmware
catalyst_9117ax_firmware
catalyst_9117_firmware
catalyst_9115ax
catalyst_9130ax_firmware
catalyst_9120axe_firmware
catalyst_9136_firmware
catalyst_9105i_firmware
catalyst_9130ax
catalyst_9105w_firmware
catalyst_9120axp_firmware
catalyst_9130axi
catalyst_9130_firmware
catalyst_9117axi_firmware
catalyst_9105axw_firmware
catalyst_9105ax
catalyst_9164_firmware
catalyst_9115axi
catalyst_9120axi
catalyst_9105axi_firmware
catalyst_9120ax
catalyst_9117
catalyst_9124ax_firmware
catalyst_9162
catalyst_9115axe_firmware
catalyst_9117ax
catalyst_9124axi_firmware
catalyst_9105w
catalyst_9120axp
catalyst_9136
catalyst_9124_firmware
catalyst_9124axd
catalyst_9120_firmware
catalyst_9130axe
catalyst_9162_firmware
catalyst_9124
catalyst_9115
catalyst_9115axi_firmware

CWE

CWE-125

Out-of-bounds Read

CWE-126

Buffer Over-read

6.5 /10