Strix
26.1K

CVE-2020-3560

HIGHCVSS 8.6/10EPSS 1.42%

Last modified

CVE-2020-3560 is a high-severity vulnerability rated 8.6/10 on the CVSS scale. A vulnerability in Cisco Aironet Access Points (APs) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) on an affected device. The vulnerability is due to improper resource management while processing specific packets. EPSS estimates a 1.42% chance of exploitation in the next 30 days.

Description

A vulnerability in Cisco Aironet Access Points (APs) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) on an affected device. The vulnerability is due to improper resource management while processing specific packets. An attacker could exploit this vulnerability by sending a series of crafted UDP packets to a specific port on an affected device. A successful exploit could either allow the attacker to tear down the connection between the AP and the wireless LAN controller, resulting in the affected device not being able to process client traffic, or cause the vulnerable device to reload, triggering a DoS condition. After the attack, the affected device should automatically recover its normal functions without manual intervention.

Metrics

CVSS 3.1
8.6/10

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

EPSS Probability
1.42%

69.3th percentile

Probability of exploitation in the next 30 days. Learn more

Weakness Enumeration

Affected Software

VendorProductVersions
CiscoWireless Lan Controller>= 8.9, < 8.10.112.0
CiscoWireless Lan Controller Software< 8.5.161.0
CiscoWireless Lan Controller Software>= 8.6, < 8.8.130.0
CiscoBusiness Access Points>= 10.0, < 10.1.1.0
CiscoAccess Points< 16.12.4a
CiscoAironet Access Point Software8.5\(154.27\)
CiscoAironet Access Point Software8.8\(125.0\)
CiscoAironet Access Point Software8.10\(105.0\)
CiscoAironet Access Point Software8.10\(105.4\)
CiscoAironet Access Point Software17.1.2.6
CiscoAironet Access Point Software17.1.2.9
CiscoAironet Access Point Software17.2.0.37

References

Timeline

Published
Last Modified
Status
Modified

Frequently Asked Questions

What is CVE-2020-3560?
A vulnerability in Cisco Aironet Access Points (APs) could allow an unauthenticated, remote attacker to cause a denial of service (DoS) on an affected device. The vulnerability is due to improper resource management while processing specific packets. An attacker could exploit this vulnerability by sending a series of crafted UDP packets to a specific port on an affected device. A successful exploit could either allow the attacker to tear down the connection between the AP and the wireless LAN controller, resulting in the affected device not being able to process client traffic, or cause the vulnerable device to reload, triggering a DoS condition. After the attack, the affected device should automatically recover its normal functions without manual intervention.
How severe is CVE-2020-3560?
CVE-2020-3560 has a CVSS score of 8.6/10 (HIGH severity). The EPSS model estimates a 1.42% probability of exploitation in the next 30 days.
How do I fix CVE-2020-3560?
Check the vendor references and advisories linked above for patched versions and mitigation guidance. You can also run a Strix scan to test if your systems are affected.

Are you affected by CVE-2020-3560?

Run a free Strix scan to check your systems for this vulnerability.

Scan your code now

Source: NVD / NIST