A vulnerability in the IP packet processing of Cisco Access Point (AP) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
This vulnerability is due to insufficient input validation of certain IPv4 packets. An attacker could exploit this vulnerability by sending a crafted IPv4 packet either to or through an affected device. A successful exploit could allow the attacker to cause an affected device to reload unexpectedly, resulting in a DoS condition. To successfully exploit this vulnerability, the attacker does not need to be associated with the affected AP. This vulnerability cannot be exploited by sending IPv6 packets.
References
Configurations
Configuration 1 (hide)
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
| AND |
|
Configuration 4 (hide)
|
History
06 Aug 2025, 13:45
| Type | Values Removed | Values Added |
|---|---|---|
| CPE | cpe:2.3:a:cisco:business_access_points:*:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_150ax:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_151axm:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_240ac:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_150ax_access_point:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_142acm:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_143acm:-:*:*:*:*:*:*:* cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_145ac_access_point:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_141acm:-:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_140ac:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_145ac:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_140ac_access_point:-:*:*:*:*:*:*:* |
|
| References | () https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-dos-h9TGGX6W - Vendor Advisory | |
| First Time |
Cisco business 150ax
Cisco wireless Lan Controller Software Cisco business Access Points Cisco business 140ac Access Point Cisco business 145ac Cisco business 141acm Cisco business 143acm Cisco ios Xe Cisco business 151axm Cisco business 145ac Access Point Cisco business 150ax Access Point Cisco business 142acm Cisco business 240ac Cisco Cisco business 140ac |
|
| CWE | NVD-CWE-Other |
21 Nov 2024, 08:52
| Type | Values Removed | Values Added |
|---|---|---|
| References | () https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-dos-h9TGGX6W - |
27 Mar 2024, 17:48
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2024-03-27 17:15
Updated : 2025-08-06 13:45
NVD link : CVE-2024-20271
Mitre link : CVE-2024-20271
CVE.ORG link : CVE-2024-20271
JSON object : View
Products Affected
cisco
- ios_xe
- business_140ac
- business_151axm
- business_240ac
- business_143acm
- business_141acm
- business_140ac_access_point
- business_145ac
- business_145ac_access_point
- business_access_points
- business_150ax
- business_142acm
- wireless_lan_controller_software
- business_150ax_access_point
CWE