CVE-2023-20112

A vulnerability in Cisco access point (AP) software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient validation of certain parameters within 802.11 frames. An attacker could exploit this vulnerability by sending a wireless 802.11 association request frame with crafted parameters to an affected device. A successful exploit could allow the attacker to cause an unexpected reload of an affected device, resulting in a DoS condition.

CVSS v3 7.4 HIGH

7.4^/10

CVSS v3 : HIGH

V3 Legend

Vector :

Exploitability : 2.8 / Impact : 4.0

Attack Vector ADJACENT_NETWORK

Attack Complexity LOW

Privileges Required NONE

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope CHANGED

References

Link	Resource
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-assoc-dos-D2SunWK2	Vendor Advisory
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-assoc-dos-D2SunWK2	Vendor Advisory

Configurations

Configuration 1 (hide)

AND

cpe:2.3:o:cisco:business_150ax_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:business_150ax:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND

cpe:2.3:o:cisco:business_151axm_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:business_151axm:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND

cpe:2.3:o:cisco:catalyst_9105ax_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9105ax:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND

cpe:2.3:o:cisco:catalyst_9105axi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9105axi:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND

cpe:2.3:o:cisco:catalyst_9105axw_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9105axw:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND

cpe:2.3:o:cisco:catalyst_9105i_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9105i:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND

cpe:2.3:o:cisco:catalyst_9105w_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9105w:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND

cpe:2.3:o:cisco:catalyst_9115_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9115:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND

cpe:2.3:o:cisco:catalyst_9115ax_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9115ax:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND

cpe:2.3:o:cisco:catalyst_9115axe_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9115axe:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND

cpe:2.3:o:cisco:catalyst_9115axi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9115axi:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND

cpe:2.3:o:cisco:catalyst_9117_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9117:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND

cpe:2.3:o:cisco:catalyst_9117ax_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9117ax:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND

cpe:2.3:o:cisco:catalyst_9117axi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9117axi:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND

cpe:2.3:o:cisco:catalyst_9120_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9120:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND

cpe:2.3:o:cisco:catalyst_9120ax_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9120ax:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND

cpe:2.3:o:cisco:catalyst_9120axe_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9120axe:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND

cpe:2.3:o:cisco:catalyst_9120axi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9120axi:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND

cpe:2.3:o:cisco:catalyst_9120axp_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9120axp:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND

cpe:2.3:o:cisco:catalyst_9124_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9124:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND

cpe:2.3:o:cisco:catalyst_9124ax_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9124ax:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND

cpe:2.3:o:cisco:catalyst_9124axd_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9124axd:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND

cpe:2.3:o:cisco:catalyst_9124axi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9124axi:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND

cpe:2.3:o:cisco:catalyst_9130_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9130:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND

cpe:2.3:o:cisco:catalyst_9130ax_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9130ax:-:*:*:*:*:*:*:*

Configuration 26 (hide)

AND

cpe:2.3:o:cisco:catalyst_9130axe_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9130axe:-:*:*:*:*:*:*:*

Configuration 27 (hide)

AND

cpe:2.3:o:cisco:catalyst_9130axi_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9130axi:-:*:*:*:*:*:*:*

Configuration 28 (hide)

AND

cpe:2.3:o:cisco:catalyst_9136_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9136:-:*:*:*:*:*:*:*

Configuration 29 (hide)

AND

cpe:2.3:o:cisco:catalyst_9162_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9162:-:*:*:*:*:*:*:*

Configuration 30 (hide)

AND

cpe:2.3:o:cisco:catalyst_9164_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9164:-:*:*:*:*:*:*:*

Configuration 31 (hide)

AND

cpe:2.3:o:cisco:catalyst_9166_firmware:*:*:*:*:*:*:*:*

cpe:2.3:h:cisco:catalyst_9166:-:*:*:*:*:*:*:*

History

21 Nov 2024, 07:40

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~6.5~~	v2 : unknown v3 : 7.4
References	~~() https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-assoc-dos-D2SunWK2 - Vendor Advisory~~	() https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-assoc-dos-D2SunWK2 - Vendor Advisory

03 Apr 2023, 17:42

Type	Values Removed	Values Added
CVSS	v2 : ~~unknown~~ v3 : ~~unknown~~	v2 : unknown v3 : 6.5
First Time		Cisco catalyst 9136 Cisco catalyst 9130 Cisco catalyst 9124ax Cisco catalyst 9117axi Firmware Cisco catalyst 9124 Firmware Cisco business 151axm Firmware Cisco catalyst 9105ax Firmware Cisco catalyst 9120axe Firmware Cisco catalyst 9162 Cisco catalyst 9124ax Firmware Cisco catalyst 9162 Firmware Cisco catalyst 9105axw Cisco catalyst 9164 Firmware Cisco catalyst 9115 Cisco catalyst 9120ax Firmware Cisco catalyst 9105axw Firmware Cisco catalyst 9120axp Firmware Cisco catalyst 9115ax Cisco catalyst 9124axi Cisco catalyst 9117 Cisco catalyst 9166 Cisco catalyst 9120 Firmware Cisco catalyst 9105axi Firmware Cisco catalyst 9124axi Firmware Cisco catalyst 9130ax Firmware Cisco Cisco catalyst 9130ax Cisco catalyst 9164 Cisco catalyst 9115ax Firmware Cisco catalyst 9124axd Cisco catalyst 9115axe Cisco catalyst 9130axe Firmware Cisco catalyst 9130axi Cisco catalyst 9120axp Cisco catalyst 9124axd Firmware Cisco catalyst 9166 Firmware Cisco catalyst 9120 Cisco catalyst 9117 Firmware Cisco catalyst 9115axi Firmware Cisco catalyst 9117axi Cisco catalyst 9105w Cisco catalyst 9115 Firmware Cisco catalyst 9105axi Cisco catalyst 9115axe Firmware Cisco catalyst 9115axi Cisco business 150ax Cisco catalyst 9130axi Firmware Cisco catalyst 9105i Cisco catalyst 9130 Firmware Cisco catalyst 9105w Firmware Cisco catalyst 9105ax Cisco business 150ax Firmware Cisco catalyst 9124 Cisco catalyst 9130axe Cisco catalyst 9120axe Cisco catalyst 9105i Firmware Cisco catalyst 9117ax Firmware Cisco catalyst 9120axi Firmware Cisco catalyst 9120ax Cisco business 151axm Cisco catalyst 9136 Firmware Cisco catalyst 9117ax Cisco catalyst 9120axi
CWE		CWE-125
CPE		cpe:2.3:h:cisco:catalyst_9105axi:-:::::::* cpe:2.3:o:cisco:catalyst_9124_firmware:::::::: cpe:2.3:h:cisco:catalyst_9117axi:-:::::::* cpe:2.3:h:cisco:catalyst_9105w:-:::::::* cpe:2.3:o:cisco:catalyst_9120axi_firmware:::::::: cpe:2.3:h:cisco:catalyst_9130axe:-:::::::* cpe:2.3:o:cisco:catalyst_9105ax_firmware:::::::: cpe:2.3:o:cisco:catalyst_9105axi_firmware:::::::: cpe:2.3:h:cisco:catalyst_9117:-:::::::* cpe:2.3:h:cisco:catalyst_9105i:-:::::::* cpe:2.3:h:cisco:catalyst_9166:-:::::::* cpe:2.3:o:cisco:catalyst_9105axw_firmware:::::::: cpe:2.3:o:cisco:catalyst_9130axe_firmware:::::::: cpe:2.3:h:cisco:catalyst_9115:-:::::::* cpe:2.3:h:cisco:catalyst_9124axd:-:::::::* cpe:2.3:h:cisco:catalyst_9117ax:-:::::::* cpe:2.3:o:cisco:catalyst_9120ax_firmware:::::::: cpe:2.3:o:cisco:catalyst_9164_firmware:::::::: cpe:2.3:h:cisco:catalyst_9120axp:-:::::::* cpe:2.3:o:cisco:catalyst_9115axe_firmware:::::::: cpe:2.3:o:cisco:catalyst_9120_firmware:::::::: cpe:2.3:o:cisco:catalyst_9162_firmware:::::::: cpe:2.3:o:cisco:business_150ax_firmware:::::::: cpe:2.3:o:cisco:catalyst_9124ax_firmware:::::::: cpe:2.3:o:cisco:catalyst_9105w_firmware:::::::: cpe:2.3:o:cisco:catalyst_9120axe_firmware:::::::: cpe:2.3:h:cisco:catalyst_9124:-:::::::* cpe:2.3:h:cisco:catalyst_9115axe:-:::::::* cpe:2.3:h:cisco:catalyst_9120ax:-:::::::* cpe:2.3:h:cisco:business_150ax:-:::::::* cpe:2.3:o:cisco:catalyst_9117ax_firmware:::::::: cpe:2.3:o:cisco:catalyst_9117axi_firmware:::::::: cpe:2.3:h:cisco:catalyst_9130axi:-:::::::* cpe:2.3:h:cisco:catalyst_9115ax:-:::::::* cpe:2.3:o:cisco:catalyst_9115_firmware:::::::: cpe:2.3:h:cisco:catalyst_9164:-:::::::* cpe:2.3:o:cisco:business_151axm_firmware:::::::: cpe:2.3:h:cisco:catalyst_9162:-:::::::* cpe:2.3:h:cisco:catalyst_9130:-:::::::* cpe:2.3:o:cisco:catalyst_9124axi_firmware:::::::: cpe:2.3:o:cisco:catalyst_9105i_firmware:::::::: cpe:2.3:h:cisco:catalyst_9115axi:-:::::::* cpe:2.3:h:cisco:business_151axm:-:::::::* cpe:2.3:o:cisco:catalyst_9130ax_firmware:::::::: cpe:2.3:h:cisco:catalyst_9105axw:-:::::::* cpe:2.3:h:cisco:catalyst_9130ax:-:::::::* cpe:2.3:o:cisco:catalyst_9130axi_firmware:::::::: cpe:2.3:o:cisco:catalyst_9136_firmware:::::::: cpe:2.3:o:cisco:catalyst_9124axd_firmware:::::::: cpe:2.3:o:cisco:catalyst_9115ax_firmware:::::::: cpe:2.3:h:cisco:catalyst_9124axi:-:::::::* cpe:2.3:o:cisco:catalyst_9120axp_firmware:::::::: cpe:2.3:h:cisco:catalyst_9105ax:-:::::::* cpe:2.3:o:cisco:catalyst_9115axi_firmware:::::::: cpe:2.3:h:cisco:catalyst_9124ax:-:::::::* cpe:2.3:o:cisco:catalyst_9130_firmware:::::::: cpe:2.3:h:cisco:catalyst_9120axi:-:::::::* cpe:2.3:h:cisco:catalyst_9136:-:::::::* cpe:2.3:h:cisco:catalyst_9120axe:-:::::::* cpe:2.3:o:cisco:catalyst_9117_firmware:::::::: cpe:2.3:h:cisco:catalyst_9120:-:::::::* cpe:2.3:o:cisco:catalyst_9166_firmware::::::::
References	~~(CISCO) https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-assoc-dos-D2SunWK2 -~~	(CISCO) https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-assoc-dos-D2SunWK2 - Vendor Advisory

23 Mar 2023, 17:15

Type	Values Removed	Values Added
New CVE

Information

Published : 2023-03-23 17:15

Updated : 2024-11-21 07:40

NVD link : CVE-2023-20112

Mitre link : CVE-2023-20112

CVE.ORG link : CVE-2023-20112

JSON object : View

Products Affected

cisco

business_151axm_firmware
catalyst_9105axw_firmware
catalyst_9166_firmware
catalyst_9105axw
catalyst_9124axd_firmware
catalyst_9124axd
catalyst_9117ax
catalyst_9120ax
catalyst_9130axe
catalyst_9115ax_firmware
catalyst_9115axe
catalyst_9130_firmware
catalyst_9105ax_firmware
catalyst_9105w_firmware
catalyst_9124ax_firmware
catalyst_9120axp
catalyst_9115axi_firmware
catalyst_9105axi
catalyst_9115axi
catalyst_9117axi_firmware
catalyst_9124ax
catalyst_9130axi
catalyst_9120ax_firmware
catalyst_9130ax_firmware
catalyst_9115ax
catalyst_9115axe_firmware
catalyst_9117_firmware
catalyst_9117
catalyst_9136
business_150ax_firmware
catalyst_9124_firmware
catalyst_9105i_firmware
catalyst_9166
catalyst_9115
catalyst_9124axi
business_151axm
catalyst_9105ax
catalyst_9120axi_firmware
business_150ax
catalyst_9162_firmware
catalyst_9120axi
catalyst_9124
catalyst_9136_firmware
catalyst_9117axi
catalyst_9130
catalyst_9105i
catalyst_9117ax_firmware
catalyst_9105axi_firmware
catalyst_9124axi_firmware
catalyst_9130axe_firmware
catalyst_9120axe
catalyst_9120_firmware
catalyst_9115_firmware
catalyst_9162
catalyst_9120
catalyst_9130axi_firmware
catalyst_9130ax
catalyst_9164_firmware
catalyst_9120axe_firmware
catalyst_9105w
catalyst_9120axp_firmware
catalyst_9164

CWE

CWE-126

Buffer Over-read

CWE-125

Out-of-bounds Read

7.4 /10