7.4

CVE-2021-34740

EPSS 0.1%
Published 23.09.2021 03:15:19
Last modified 21.11.2024 06:11:05
Source psirt@cisco.com
Teams watchlist Login
Open Login

A vulnerability in the WLAN Control Protocol (WCP) implementation for Cisco Aironet Access Point (AP) software could allow an unauthenticated, adjacent attacker to cause a reload of an affected device, resulting in a denial of service (DoS) condition. This vulnerability is due to incorrect error handling when an affected device receives an unexpected 802.11 frame. An attacker could exploit this vulnerability by sending certain 802.11 frames over the wireless network to an interface on an affected AP. A successful exploit could allow the attacker to cause a packet buffer leak. This could eventually result in buffer allocation failures, which would trigger a reload of the affected device.

Affected products Warnungen 0 Metrics 4 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Aironet Access Point Software Version >= 8.10.0 < 8.10.162.0

   Cisco ≫ 1100-4g/6g Integrated Services Router Version-
   Cisco ≫ 1100-4p Integrated Services Router Version-
   Cisco ≫ 1100-8p Integrated Services Router Version-
   Cisco ≫ 1100 Integrated Services Router Version-
   Cisco ≫ 1101-4p Integrated Services Router Version-
   Cisco ≫ 1101 Integrated Services Router Version-
   Cisco ≫ 1109-2p Integrated Services Router Version-
   Cisco ≫ 1109-4p Integrated Services Router Version-
   Cisco ≫ 1109 Integrated Services Router Version-
   Cisco ≫ 1111x-8p Integrated Services Router Version-
   Cisco ≫ 1111x Integrated Services Router Version-
   Cisco ≫ 111x Integrated Services Router Version-
   Cisco ≫ 1120 Integrated Services Router Version-
   Cisco ≫ 1160 Integrated Services Router Version-
   Cisco ≫ 6300 Series Access Points Version-
   Cisco ≫ Aironet 1540 Version-
   Cisco ≫ Aironet 1542d Version-
   Cisco ≫ Aironet 1542i Version-
   Cisco ≫ Aironet 1560 Version-
   Cisco ≫ Aironet 1562d Version-
   Cisco ≫ Aironet 1562e Version-
   Cisco ≫ Aironet 1562i Version-
   Cisco ≫ Aironet 1800 Version-
   Cisco ≫ Aironet 1800i Version-
   Cisco ≫ Aironet 1810 Version-
   Cisco ≫ Aironet 1810w Version-
   Cisco ≫ Aironet 1815 Version-
   Cisco ≫ Aironet 1815i Version-
   Cisco ≫ Aironet 1830 Version-
   Cisco ≫ Aironet 1830e Version-
   Cisco ≫ Aironet 1830i Version-
   Cisco ≫ Aironet 1840 Version-
   Cisco ≫ Aironet 1850 Version-
   Cisco ≫ Aironet 1850e Version-
   Cisco ≫ Aironet 1850i Version-
   Cisco ≫ Aironet 2800 Version-
   Cisco ≫ Aironet 2800e Version-
   Cisco ≫ Aironet 2800i Version-
   Cisco ≫ Aironet 3800 Version-
   Cisco ≫ Aironet 3800e Version-
   Cisco ≫ Aironet 3800i Version-
   Cisco ≫ Aironet 3800p Version-
   Cisco ≫ Aironet 4800 Version-
   Cisco ≫ Catalyst 9100 Version-
   Cisco ≫ Catalyst 9105 Version-
   Cisco ≫ Catalyst 9105axi Version-
   Cisco ≫ Catalyst 9105axw Version-
   Cisco ≫ Catalyst 9115 Version-
   Cisco ≫ Catalyst 9115 Ap Version-
   Cisco ≫ Catalyst 9115axe Version-
   Cisco ≫ Catalyst 9115axi Version-
   Cisco ≫ Catalyst 9117 Version-
   Cisco ≫ Catalyst 9117 Ap Version-
   Cisco ≫ Catalyst 9117axi Version-
   Cisco ≫ Catalyst 9120 Version-
   Cisco ≫ Catalyst 9120 Ap Version-
   Cisco ≫ Catalyst 9120axe Version-
   Cisco ≫ Catalyst 9120axi Version-
   Cisco ≫ Catalyst 9120axp Version-
   Cisco ≫ Catalyst 9124 Version-
   Cisco ≫ Catalyst 9124axd Version-
   Cisco ≫ Catalyst 9124axi Version-
   Cisco ≫ Catalyst 9130 Version-
   Cisco ≫ Catalyst 9130 Ap Version-
   Cisco ≫ Catalyst 9130axe Version-
   Cisco ≫ Catalyst 9130axi Version-
   Cisco ≫ Catalyst Iw6300 Version-
   Cisco ≫ Catalyst Iw6300 Ac Version-
   Cisco ≫ Catalyst Iw6300 Dc Version-
   Cisco ≫ Catalyst Iw6300 Dcw Version-

Cisco ≫ Aironet Access Point Software Version17.2

   Cisco ≫ 1100-4g/6g Integrated Services Router Version-
   Cisco ≫ 1100-4p Integrated Services Router Version-
   Cisco ≫ 1100-8p Integrated Services Router Version-
   Cisco ≫ 1100 Integrated Services Router Version-
   Cisco ≫ 1101-4p Integrated Services Router Version-
   Cisco ≫ 1101 Integrated Services Router Version-
   Cisco ≫ 1109-2p Integrated Services Router Version-
   Cisco ≫ 1109-4p Integrated Services Router Version-
   Cisco ≫ 1109 Integrated Services Router Version-
   Cisco ≫ 1111x-8p Integrated Services Router Version-
   Cisco ≫ 1111x Integrated Services Router Version-
   Cisco ≫ 111x Integrated Services Router Version-
   Cisco ≫ 1120 Integrated Services Router Version-
   Cisco ≫ 1160 Integrated Services Router Version-
   Cisco ≫ 6300 Series Access Points Version-
   Cisco ≫ Aironet 1540 Version-
   Cisco ≫ Aironet 1542d Version-
   Cisco ≫ Aironet 1542i Version-
   Cisco ≫ Aironet 1560 Version-
   Cisco ≫ Aironet 1562d Version-
   Cisco ≫ Aironet 1562e Version-
   Cisco ≫ Aironet 1562i Version-
   Cisco ≫ Aironet 1800 Version-
   Cisco ≫ Aironet 1800i Version-
   Cisco ≫ Aironet 1810 Version-
   Cisco ≫ Aironet 1810w Version-
   Cisco ≫ Aironet 1815 Version-
   Cisco ≫ Aironet 1815i Version-
   Cisco ≫ Aironet 1830 Version-
   Cisco ≫ Aironet 1830e Version-
   Cisco ≫ Aironet 1830i Version-
   Cisco ≫ Aironet 1840 Version-
   Cisco ≫ Aironet 1850 Version-
   Cisco ≫ Aironet 1850e Version-
   Cisco ≫ Aironet 1850i Version-
   Cisco ≫ Aironet 2800 Version-
   Cisco ≫ Aironet 2800e Version-
   Cisco ≫ Aironet 2800i Version-
   Cisco ≫ Aironet 3800 Version-
   Cisco ≫ Aironet 3800e Version-
   Cisco ≫ Aironet 3800i Version-
   Cisco ≫ Aironet 3800p Version-
   Cisco ≫ Aironet 4800 Version-
   Cisco ≫ Catalyst 9100 Version-
   Cisco ≫ Catalyst 9105 Version-
   Cisco ≫ Catalyst 9105axi Version-
   Cisco ≫ Catalyst 9105axw Version-
   Cisco ≫ Catalyst 9115 Version-
   Cisco ≫ Catalyst 9115 Ap Version-
   Cisco ≫ Catalyst 9115axe Version-
   Cisco ≫ Catalyst 9115axi Version-
   Cisco ≫ Catalyst 9117 Version-
   Cisco ≫ Catalyst 9117 Ap Version-
   Cisco ≫ Catalyst 9117axi Version-
   Cisco ≫ Catalyst 9120 Version-
   Cisco ≫ Catalyst 9120 Ap Version-
   Cisco ≫ Catalyst 9120axe Version-
   Cisco ≫ Catalyst 9120axi Version-
   Cisco ≫ Catalyst 9120axp Version-
   Cisco ≫ Catalyst 9124 Version-
   Cisco ≫ Catalyst 9124axd Version-
   Cisco ≫ Catalyst 9124axi Version-
   Cisco ≫ Catalyst 9130 Version-
   Cisco ≫ Catalyst 9130 Ap Version-
   Cisco ≫ Catalyst 9130axe Version-
   Cisco ≫ Catalyst 9130axi Version-
   Cisco ≫ Catalyst Iw6300 Version-
   Cisco ≫ Catalyst Iw6300 Ac Version-
   Cisco ≫ Catalyst Iw6300 Dc Version-
   Cisco ≫ Catalyst Iw6300 Dcw Version-

Cisco ≫ Aironet Access Point Software Version17.3

   Cisco ≫ 1100-4g/6g Integrated Services Router Version-
   Cisco ≫ 1100-4p Integrated Services Router Version-
   Cisco ≫ 1100-8p Integrated Services Router Version-
   Cisco ≫ 1100 Integrated Services Router Version-
   Cisco ≫ 1101-4p Integrated Services Router Version-
   Cisco ≫ 1101 Integrated Services Router Version-
   Cisco ≫ 1109-2p Integrated Services Router Version-
   Cisco ≫ 1109-4p Integrated Services Router Version-
   Cisco ≫ 1109 Integrated Services Router Version-
   Cisco ≫ 1111x-8p Integrated Services Router Version-
   Cisco ≫ 1111x Integrated Services Router Version-
   Cisco ≫ 111x Integrated Services Router Version-
   Cisco ≫ 1120 Integrated Services Router Version-
   Cisco ≫ 1160 Integrated Services Router Version-
   Cisco ≫ 6300 Series Access Points Version-
   Cisco ≫ Aironet 1540 Version-
   Cisco ≫ Aironet 1542d Version-
   Cisco ≫ Aironet 1542i Version-
   Cisco ≫ Aironet 1560 Version-
   Cisco ≫ Aironet 1562d Version-
   Cisco ≫ Aironet 1562e Version-
   Cisco ≫ Aironet 1562i Version-
   Cisco ≫ Aironet 1800 Version-
   Cisco ≫ Aironet 1800i Version-
   Cisco ≫ Aironet 1810 Version-
   Cisco ≫ Aironet 1810w Version-
   Cisco ≫ Aironet 1815 Version-
   Cisco ≫ Aironet 1815i Version-
   Cisco ≫ Aironet 1830 Version-
   Cisco ≫ Aironet 1830e Version-
   Cisco ≫ Aironet 1830i Version-
   Cisco ≫ Aironet 1840 Version-
   Cisco ≫ Aironet 1850 Version-
   Cisco ≫ Aironet 1850e Version-
   Cisco ≫ Aironet 1850i Version-
   Cisco ≫ Aironet 2800 Version-
   Cisco ≫ Aironet 2800e Version-
   Cisco ≫ Aironet 2800i Version-
   Cisco ≫ Aironet 3800 Version-
   Cisco ≫ Aironet 3800e Version-
   Cisco ≫ Aironet 3800i Version-
   Cisco ≫ Aironet 3800p Version-
   Cisco ≫ Aironet 4800 Version-
   Cisco ≫ Catalyst 9100 Version-
   Cisco ≫ Catalyst 9105 Version-
   Cisco ≫ Catalyst 9105axi Version-
   Cisco ≫ Catalyst 9105axw Version-
   Cisco ≫ Catalyst 9115 Version-
   Cisco ≫ Catalyst 9115 Ap Version-
   Cisco ≫ Catalyst 9115axe Version-
   Cisco ≫ Catalyst 9115axi Version-
   Cisco ≫ Catalyst 9117 Version-
   Cisco ≫ Catalyst 9117 Ap Version-
   Cisco ≫ Catalyst 9117axi Version-
   Cisco ≫ Catalyst 9120 Version-
   Cisco ≫ Catalyst 9120 Ap Version-
   Cisco ≫ Catalyst 9120axe Version-
   Cisco ≫ Catalyst 9120axi Version-
   Cisco ≫ Catalyst 9120axp Version-
   Cisco ≫ Catalyst 9124 Version-
   Cisco ≫ Catalyst 9124axd Version-
   Cisco ≫ Catalyst 9124axi Version-
   Cisco ≫ Catalyst 9130 Version-
   Cisco ≫ Catalyst 9130 Ap Version-
   Cisco ≫ Catalyst 9130axe Version-
   Cisco ≫ Catalyst 9130axi Version-
   Cisco ≫ Catalyst Iw6300 Version-
   Cisco ≫ Catalyst Iw6300 Ac Version-
   Cisco ≫ Catalyst Iw6300 Dc Version-
   Cisco ≫ Catalyst Iw6300 Dcw Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.1%	0.249

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	7.4	2.8	4	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H
nvd@nist.gov	6.1	6.5	6.9	AV:A/AC:L/Au:N/C:N/I:N/A:C
psirt@cisco.com	7.4	2.8	4	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CWE-401 Missing Release of Memory after Effective Lifetime

The product does not sufficiently track and release allocated memory after it has been used, which slowly consumes remaining memory.

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-airo-wpa-pktleak-dos-uSTyGrL

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-34740

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-34740

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-34740

EUVD