Vulnerability Description
A vulnerability in the quality of service (QoS) feature of Cisco Aironet Series Access Points (APs) could allow an authenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation on QoS fields within Wi-Fi frames by the affected device. An attacker could exploit this vulnerability by sending malformed Wi-Fi frames to an affected device. A successful exploit could allow the attacker to cause the affected device to crash, resulting in a DoS condition.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Aironet Access Point Firmware | - |
| Cisco | Aironet 1562D | - |
| Cisco | Aironet 1562E | - |
| Cisco | Aironet 1562I | - |
| Cisco | Aironet 2800E | - |
| Cisco | Aironet 2800I | - |
| Cisco | Aironet 3800E | - |
| Cisco | Aironet 3800I | - |
| Cisco | Aironet 3800P | - |
| Cisco | Aironet 4800 | - |
| Cisco | Aironet 1850E | - |
| Cisco | Aironet 1850I | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/107988Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
- http://www.securityfocus.com/bid/107988Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
FAQ
What is CVE-2019-1826?
CVE-2019-1826 is a vulnerability with a CVSS score of 6.8 (MEDIUM). A vulnerability in the quality of service (QoS) feature of Cisco Aironet Series Access Points (APs) could allow an authenticated, adjacent attacker to cause a denial of service (DoS) condition on an a...
How severe is CVE-2019-1826?
CVE-2019-1826 has been rated MEDIUM with a CVSS base score of 6.8/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-1826?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Aironet Access Point Firmware, Cisco Aironet 1562D, Cisco Aironet 1562E, Cisco Aironet 1562I, Cisco Aironet 2800E.