CVE-2021-34740

CVE Database · CVE-2021-34740

CVE-2021-34740

· HIGHModified

CVSS v3.1

7.4

EPSS

0.35%

Published

Sep 23, 2021

Modified

Nov 21, 2024

Public PoC / Exploit

All weaponized →

No public PoC or exploit code indexed for this CVE.

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

A vulnerability in the WLAN Control Protocol (WCP) implementation for Cisco Aironet Access Point (AP) software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. This vulnerability is due to incorrect error handling when an affected device receives an unexpected 802.11 frame. An attacker could exploit this vulnerability by sending certain 802.11 frames over the wireless network to an interface on an affected AP. A successful exploit could allow the attacker to cause a packet buffer leak. This could eventually result in buffer allocation failures, which would trigger a reload of the affected device.

CVSS Vector

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Weaknesses (CWE)

CWE-401CWE-401

Affected Products (73)

cisco · aironet_access_point_software (up to 8.10.162.0)vulnerable

cisco · aironet_access_point_softwarevulnerable

cisco · 1100-4g\/6g_integrated_services_router

cisco · 1100-4p_integrated_services_router

cisco · 1100-8p_integrated_services_router

cisco · 1100_integrated_services_router

cisco · 1101-4p_integrated_services_router

cisco · 1101_integrated_services_router

cisco · 1109-2p_integrated_services_router

cisco · 1109-4p_integrated_services_router

· 1109_integrated_services_router

References (2)

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-airo-wpa-pktleak-dos-uSTyGrL

Vendor Advisory

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-airo-wpa-pktleak-dos-uSTyGrL

Vendor Advisory

KEV Catalog EPSS Scores Vendors All CVEs