Details of VAR-201711-0303

ID

VAR-201711-0303

CVE

CVE-2017-12274

TITLE

plural Cisco Aironet Access point input vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2017-009837

DESCRIPTION

A vulnerability in Extensible Authentication Protocol (EAP) ingress frame processing for the Cisco Aironet 1560, 2800, and 3800 Series Access Points could allow an unauthenticated, Layer 2 radio frequency (RF) adjacent attacker to cause the Access Point (AP) to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to insufficient validation of the EAP frame. An attacker could exploit this vulnerability by sending a malformed EAP frame to the targeted device. A successful exploit could allow the attacker to cause the AP to reload, resulting in a DoS condition while the AP is reloading. It may be necessary to manually power cycle the device in order for it to recover. This vulnerability affects the following Cisco products running either the Lightweight AP Software or Mobility Express image: Aironet 1560 Series Access Points, Aironet 2800 Series Access Points, Aironet 3800 Series Access Points. Note: The Cisco Aironet 1560 Series Access Point device is supported as of release 8.3.112.0. Cisco Bug IDs: CSCve18935. Vendors have confirmed this vulnerability Bug ID CSCve18935 It is released as.Service operation interruption (DoS) There is a possibility of being put into a state. The ExtensibleAuthenticationProtocol (EAP) ingressfram in the Cisco Aironet 1560, 2800, and 3800 Series AccessPoints handles a denial of service vulnerability that stems from a program failing to adequately validate EAP frames

Trust: 2.52

sources: NVD: CVE-2017-12274 // JVNDB: JVNDB-2017-009837 // CNVD: CNVD-2017-32920 // BID: 101648 // VULHUB: VHN-102780

IOT TAXONOMY

category:

['Network device']

sub_category:

Trust: 0.6

sources: CNVD: CNVD-2017-32920

AFFECTED PRODUCTS

vendor:	cisco	model:	aironet 1562	scope:	eq	version:	-	Trust: 1.6
vendor:	cisco	model:	aironet 3800	scope:	eq	version:	-	Trust: 1.6
vendor:	cisco	model:	aironet 2800	scope:	eq	version:	-	Trust: 1.6
vendor:	cisco	model:	aironet access point software	scope:	-	version:	-	Trust: 0.8
vendor:	cisco	model:	aironet series access points	scope:	eq	version:	2800	Trust: 0.6
vendor:	cisco	model:	aironet series access points	scope:	eq	version:	3800	Trust: 0.6
vendor:	cisco	model:	aironet series access points	scope:	eq	version:	15608.3.112.0	Trust: 0.6
vendor:	cisco	model:	aironet series access points	scope:	eq	version:	38000	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	eq	version:	28000	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	eq	version:	18508.4(2.62)	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	eq	version:	15600	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	ne	version:	38008.3.102.0	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	ne	version:	38008.2.121.0	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	ne	version:	28008.3.102.0	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	ne	version:	28008.2.121.0	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	ne	version:	18508.4(2.70)	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	ne	version:	18508.4(100.0)	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	ne	version:	18508.4(1.127)	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	ne	version:	18008.3.102.0	Trust: 0.3
vendor:	cisco	model:	aironet series access points	scope:	ne	version:	18008.2.121.0	Trust: 0.3

sources: CNVD: CNVD-2017-32920 // BID: 101648 // JVNDB: JVNDB-2017-009837 // CNNVD: CNNVD-201711-079 // NVD: CVE-2017-12274

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov:	CVE-2017-12274
value:	MEDIUM
Trust: 1.0
NVD:	CVE-2017-12274
value:	MEDIUM
Trust: 0.8
CNVD:	CNVD-2017-32920
value:	HIGH
Trust: 0.6
CNNVD:	CNNVD-201711-079
value:	MEDIUM
Trust: 0.6
VULHUB:	VHN-102780
value:	MEDIUM
Trust: 0.1

nvd@nist.gov:	CVE-2017-12274
severity:	MEDIUM
baseScore:	6.1
vectorString:	AV:A/AC:L/AU:N/C:N/I:N/A:C
accessVector:	ADJACENT_NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	6.5
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 1.8
CNVD:	CNVD-2017-32920
severity:	HIGH
baseScore:	7.8
vectorString:	AV:N/AC:L/AU:N/C:N/I:N/A:C
accessVector:	NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	10.0
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.6
VULHUB:	VHN-102780
severity:	MEDIUM
baseScore:	6.1
vectorString:	AV:A/AC:L/AU:N/C:N/I:N/A:C
accessVector:	ADJACENT_NETWORK
accessComplexity:	LOW
authentication:	NONE
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	COMPLETE
exploitabilityScore:	6.5
impactScore:	6.9
acInsufInfo:	NONE
obtainAllPrivilege:	NONE
obtainUserPrivilege:	NONE
obtainOtherPrivilege:	NONE
userInteractionRequired:	NONE
version:	2.0
Trust: 0.1

nvd@nist.gov:	CVE-2017-12274
baseSeverity:	MEDIUM
baseScore:	6.5
vectorString:	CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
attackVector:	ADJACENT
attackComplexity:	LOW
privilegesRequired:	NONE
userInteraction:	NONE
scope:	UNCHANGED
confidentialityImpact:	NONE
integrityImpact:	NONE
availabilityImpact:	HIGH
exploitabilityScore:	2.8
impactScore:	3.6
version:	3.0
Trust: 1.8

sources: CNVD: CNVD-2017-32920 // VULHUB: VHN-102780 // JVNDB: JVNDB-2017-009837 // CNNVD: CNNVD-201711-079 // NVD: CVE-2017-12274

PROBLEMTYPE DATA

problemtype:

CWE-20

Trust: 1.9

sources: VULHUB: VHN-102780 // JVNDB: JVNDB-2017-009837 // NVD: CVE-2017-12274

THREAT TYPE

remote or local

Trust: 0.6

sources: CNNVD: CNNVD-201711-079

TYPE

input validation error

Trust: 0.6

sources: CNNVD: CNNVD-201711-079

CONFIGURATIONS

sources: JVNDB: JVNDB-2017-009837

PATCH

title:	cisco-sa-20171101-aironet2	url:	https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20171101-aironet2	Trust: 0.8
title:	Patch for CiscoAironetAccessPoints Denial of Service Vulnerability (CNVD-2017-32920)	url:	https://www.cnvd.org.cn/patchInfo/show/105497	Trust: 0.6
title:	Cisco Aironet 1560 , 2800 and 3800 Series Access Points Security vulnerabilities	url:	http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=76082	Trust: 0.6

sources: CNVD: CNVD-2017-32920 // JVNDB: JVNDB-2017-009837 // CNNVD: CNNVD-201711-079

EXTERNAL IDS

db:	NVD	id:	CVE-2017-12274	Trust: 3.4
db:	BID	id:	101648	Trust: 2.6
db:	SECTRACK	id:	1039715	Trust: 1.7
db:	JVNDB	id:	JVNDB-2017-009837	Trust: 0.8
db:	CNNVD	id:	CNNVD-201711-079	Trust: 0.7
db:	CNVD	id:	CNVD-2017-32920	Trust: 0.6
db:	VULHUB	id:	VHN-102780	Trust: 0.1

sources: CNVD: CNVD-2017-32920 // VULHUB: VHN-102780 // BID: 101648 // JVNDB: JVNDB-2017-009837 // CNNVD: CNNVD-201711-079 // NVD: CVE-2017-12274

REFERENCES

url:	https://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20171101-aironet2	Trust: 2.6
url:	http://www.securityfocus.com/bid/101648	Trust: 1.7
url:	http://www.securitytracker.com/id/1039715	Trust: 1.7
url:	https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-12274	Trust: 0.8
url:	https://nvd.nist.gov/vuln/detail/cve-2017-12274	Trust: 0.8
url:	http://www.cisco.com/cisco/web/solutions/small_business/products/wireless/aironet_series_access_points/index.html	Trust: 0.3
url:	http://www.cisco.com/	Trust: 0.3

sources: CNVD: CNVD-2017-32920 // VULHUB: VHN-102780 // BID: 101648 // JVNDB: JVNDB-2017-009837 // CNNVD: CNNVD-201711-079 // NVD: CVE-2017-12274

CREDITS

Cisco.

Trust: 0.3

sources: BID: 101648

SOURCES

db:	CNVD	id:	CNVD-2017-32920
db:	VULHUB	id:	VHN-102780
db:	BID	id:	101648
db:	JVNDB	id:	JVNDB-2017-009837
db:	CNNVD	id:	CNNVD-201711-079
db:	NVD	id:	CVE-2017-12274

LAST UPDATE DATE

2024-11-23T22:12:48.085000+00:00

SOURCES UPDATE DATE

db:	CNVD	id:	CNVD-2017-32920	date:	2017-11-07T00:00:00
db:	VULHUB	id:	VHN-102780	date:	2019-10-09T00:00:00
db:	BID	id:	101648	date:	2017-12-19T22:00:00
db:	JVNDB	id:	JVNDB-2017-009837	date:	2017-11-24T00:00:00
db:	CNNVD	id:	CNNVD-201711-079	date:	2019-10-17T00:00:00
db:	NVD	id:	CVE-2017-12274	date:	2024-11-21T03:09:12.737

SOURCES RELEASE DATE

db:	CNVD	id:	CNVD-2017-32920	date:	2017-11-07T00:00:00
db:	VULHUB	id:	VHN-102780	date:	2017-11-02T00:00:00
db:	BID	id:	101648	date:	2017-11-01T00:00:00
db:	JVNDB	id:	JVNDB-2017-009837	date:	2017-11-24T00:00:00
db:	CNNVD	id:	CNNVD-201711-079	date:	2017-11-03T00:00:00
db:	NVD	id:	CVE-2017-12274	date:	2017-11-02T16:29:00.333