Vulnerability Description
A vulnerability in the internal packet processing of Cisco Aironet Series Access Points (APs) could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected AP if the switch interface where the AP is connected has port security configured. The vulnerability exists because the AP forwards some malformed wireless client packets outside of the Control and Provisioning of Wireless Access Points (CAPWAP) tunnel. An attacker could exploit this vulnerability by sending crafted wireless packets to an affected AP. A successful exploit could allow the attacker to trigger a security violation on the adjacent switch port, which could result in a DoS condition. Note: Though the Common Vulnerability Scoring System (CVSS) score corresponds to a High Security Impact Rating (SIR), this vulnerability is considered Medium because a workaround is available and exploitation requires a specific switch configuration. There are workarounds that address this vulnerability.
CVSS Score
HIGH
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Aironet Access Point Firmware | >= 8.5, < 8.5.140.0 |
| Cisco | Aironet 1542D | - |
| Cisco | Aironet 1542I | - |
| Cisco | Aironet 1562D | - |
| Cisco | Aironet 1562E | - |
| Cisco | Aironet 1562I | - |
| Cisco | Aironet 1800I | - |
| Cisco | Aironet 2800E | - |
| Cisco | Aironet 2800I | - |
| Cisco | Aironet 3800E | - |
| Cisco | Aironet 3800I | - |
| Cisco | Aironet 3800P | - |
| Cisco | Aironet 1850E | - |
| Cisco | Aironet 1850I | - |
Related Weaknesses (CWE)
References
- http://www.securityfocus.com/bid/108000Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
- http://www.securityfocus.com/bid/108000Third Party AdvisoryVDB Entry
- https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-2Vendor Advisory
FAQ
What is CVE-2019-1834?
CVE-2019-1834 is a vulnerability with a CVSS score of 7.4 (HIGH). A vulnerability in the internal packet processing of Cisco Aironet Series Access Points (APs) could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affec...
How severe is CVE-2019-1834?
CVE-2019-1834 has been rated HIGH with a CVSS base score of 7.4/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2019-1834?
Check the references section above for vendor advisories and patch information. Affected products include: Cisco Aironet Access Point Firmware, Cisco Aironet 1542D, Cisco Aironet 1542I, Cisco Aironet 1562D, Cisco Aironet 1562E.