CVE-2023-20176
5.8
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:L
Summary
A vulnerability in the networking component of Cisco access point (AP) software could allow an unauthenticated, remote attacker to cause a temporary disruption of service. This vulnerability is due to overuse of AP resources. An attacker could exploit this vulnerability by connecting to an AP on an affected device as a wireless client and sending a high rate of traffic over an extended period of time. A successful exploit could allow the attacker to cause the Datagram TLS (DTLS) session to tear down and reset, causing a denial of service (DoS) condition.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Cisco | Cisco Aironet Access Point Software | 8.10.170.0 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.10.1e | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.10.1 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.1.1t | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.1.1s | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.1.1 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.11.1a | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.11.1 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.11.1c | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.11.1b | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.12.1s | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.12.4 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.12.1 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.12.2s | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.12.1t | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.12.4a | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.12.5 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.12.3 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.12.6 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.12.8 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.12.7 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 16.12.6a | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.3.1 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.3.2a | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.3.3 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.3.2 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.3.4c | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.3.5a | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.3.6 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.2.1 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.2.1a | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.2.3 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.2.2 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.5.1 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.4.1 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.4.2 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.6.1 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.6.2 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.6.3 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.6.4 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.6.5 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.7.1 | affected |
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | 17.8.1 | affected |
Weaknesses
- CWE-400: Uncontrolled Resource Consumption
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.