CVE-2019-15261

EPSS 1.45%
Published 16.10.2019 19:15:13
Last modified 21.11.2024 04:28:19
Source psirt@cisco.com
Teams watchlist Login
Open Login

A vulnerability in the Point-to-Point Tunneling Protocol (PPTP) VPN packet processing functionality in Cisco Aironet Access Points (APs) could allow an unauthenticated, remote attacker to cause an affected device to reload, resulting in a denial of service (DoS) condition. The vulnerability is due to insufficient validation of Generic Routing Encapsulation (GRE) frames that pass through the data plane of an affected AP. An attacker could exploit this vulnerability by associating to a vulnerable AP, initiating a PPTP VPN connection to an arbitrary PPTP VPN server, and sending a malicious GRE frame through the data plane of the AP. A successful exploit could allow the attacker to cause an internal process of the targeted AP to crash, which in turn would cause the AP to reload. The AP reload would cause a DoS condition for clients that are associated with the AP.

Affected products Warnungen 0 Metrics 4 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Aironet 1810 Firmware Version >= 8.4 < 8.5.151.0

Cisco ≫ Aironet 1810 Version-

Cisco ≫ Aironet 1810 Firmware Version >= 8.8 < 8.8.125.0

Cisco ≫ Aironet 1810 Version-

Cisco ≫ Aironet 1810 Firmware Version >= 8.9 < 8.9.111.0

Cisco ≫ Aironet 1810 Version-

Cisco ≫ Aironet 1830 Firmware Version >= 8.4 < 8.5.151.0

Cisco ≫ Aironet 1830 Version-

Cisco ≫ Aironet 1830 Firmware Version >= 8.8 < 8.8.125.0

Cisco ≫ Aironet 1830 Version-

Cisco ≫ Aironet 1830 Firmware Version >= 8.9 < 8.9.111.0

Cisco ≫ Aironet 1830 Version-

Cisco ≫ Aironet 1850 Firmware Version >= 8.4 < 8.5.151.0

Cisco ≫ Aironet 1850 Version-

Cisco ≫ Aironet 1850 Firmware Version >= 8.8 < 8.8.125.0

Cisco ≫ Aironet 1850 Version-

Cisco ≫ Aironet 1850 Firmware Version >= 8.9 < 8.9.111.0

Cisco ≫ Aironet 1850 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	1.45%	0.789

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	8.6	3.9	4	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
nvd@nist.gov	7.8	10	6.9	AV:N/AC:L/Au:N/C:N/I:N/A:C
psirt@cisco.com	8.6	3.9	4	CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CWE-20 Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20191016-airo-pptp-dos

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2019-15261

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2019-15261

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2019-15261

EUVD