Strix
26.1K

CVE-2019-15265

MEDIUMCVSS 6.5/10EPSS 0.32%

Last modified

CVE-2019-15265 is a medium-severity vulnerability rated 6.5/10 on the CVSS scale. A vulnerability in the bridge protocol data unit (BPDU) forwarding functionality of Cisco Aironet Access Points (APs) could allow an unauthenticated, adjacent attacker to cause an AP port to go into an error disabled state. The vulnerability occurs because BPDUs received from specific wireless clients are forwarded incorrectly. EPSS estimates a 0.32% chance of exploitation in the next 30 days.

Description

A vulnerability in the bridge protocol data unit (BPDU) forwarding functionality of Cisco Aironet Access Points (APs) could allow an unauthenticated, adjacent attacker to cause an AP port to go into an error disabled state. The vulnerability occurs because BPDUs received from specific wireless clients are forwarded incorrectly. An attacker could exploit this vulnerability on the wireless network by sending a steady stream of crafted BPDU frames. A successful exploit could allow the attacker to cause a limited denial of service (DoS) attack because an AP port could go offline.

Metrics

CVSS 3.1
6.5/10

CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

EPSS Probability
0.32%

23.5th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoAironet 1540 Firmware< 8.5.151.0
CiscoAironet 1540 Firmware>= 8.6, < 8.8.120.0
CiscoAironet 1540 Firmware>= 8.8.125.0, < 8.9.100.0
CiscoAironet 1560 Firmware< 8.5.151.0
CiscoAironet 1560 Firmware>= 8.6, < 8.8.120.0
CiscoAironet 1560 Firmware>= 8.8.125.0, < 8.9.100.0
CiscoAironet 1800 Firmware< 8.5.151.0
CiscoAironet 1800 Firmware>= 8.6, < 8.8.120.0
CiscoAironet 1800 Firmware>= 8.8.125.0, < 8.9.100.0
CiscoAironet 2800 Firmware< 8.5.151.0
CiscoAironet 2800 Firmware>= 8.6, < 8.8.120.0
CiscoAironet 2800 Firmware>= 8.8.125.0, < 8.9.100.0
CiscoAironet 3800 Firmware< 8.5.151.0
CiscoAironet 3800 Firmware>= 8.6, < 8.8.120.0
CiscoAironet 3800 Firmware>= 8.8.125.0, < 8.9.100.0

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2019-15265?
A vulnerability in the bridge protocol data unit (BPDU) forwarding functionality of Cisco Aironet Access Points (APs) could allow an unauthenticated, adjacent attacker to cause an AP port to go into an error disabled state. The vulnerability occurs because BPDUs received from specific wireless clients are forwarded incorrectly. An attacker could exploit this vulnerability on the wireless network by sending a steady stream of crafted BPDU frames. A successful exploit could allow the attacker to cause a limited denial of service (DoS) attack because an AP port could go offline.
How severe is CVE-2019-15265?
CVE-2019-15265 has a CVSS score of 6.5/10 (MEDIUM severity). The EPSS model estimates a 0.32% probability of exploitation in the next 30 days.
How do I fix CVE-2019-15265?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2019-15265?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST