4.7

CVE-2022-20728

EPSS 0.03%
Published 30.09.2022 19:15:10
Last modified 21.11.2024 06:43:25
Source psirt@cisco.com
Teams watchlist Login
Open Login

A vulnerability in the client forwarding code of multiple Cisco Access Points (APs) could allow an unauthenticated, adjacent attacker to inject packets from the native VLAN to clients within nonnative VLANs on an affected device. This vulnerability is due to a logic error on the AP that forwards packets that are destined to a wireless client if they are received on the native VLAN. An attacker could exploit this vulnerability by obtaining access to the native VLAN and directing traffic directly to the client through their MAC/IP combination. A successful exploit could allow the attacker to bypass VLAN separation and potentially also bypass any Layer 3 protection mechanisms that are deployed.

Affected products Warnungen 0 Metrics 3 CWE 1 References 4

Data is provided by the National Vulnerability Database (NVD)

Cisco ≫ Aironet 1542d Firmware Version017.006(001)

Cisco ≫ Aironet 1542d Version-

Cisco ≫ Aironet 1542i Firmware Version017.006(001)

Cisco ≫ Aironet 1542i Version-

Cisco ≫ Aironet 1562i Firmware Version017.006(001)

Cisco ≫ Aironet 1562i Version-

Cisco ≫ Aironet 1562e Firmware Version017.006(001)

Cisco ≫ Aironet 1562e Version-

Cisco ≫ Aironet 1562d Firmware Version017.006(001)

Cisco ≫ Aironet 1562d Version-

Cisco ≫ Aironet 1815i Firmware Version017.006(001)

Cisco ≫ Aironet 1815i Version-

Cisco ≫ Aironet 1815m Firmware Version017.006(001)

Cisco ≫ Aironet 1815m Version-

Cisco ≫ Aironet 1815t Firmware Version017.006(001)

Cisco ≫ Aironet 1815t Version-

Cisco ≫ Aironet 1815w Firmware Version017.006(001)

Cisco ≫ Aironet 1815w Version-

Cisco ≫ Aironet 1830 Firmware Version017.006(001)

Cisco ≫ Aironet 1830 Version-

Cisco ≫ Aironet 1840 Firmware Version017.006(001)

Cisco ≫ Aironet 1840 Version-

Cisco ≫ Aironet 1850e Firmware Version017.006(001)

Cisco ≫ Aironet 1850e Version-

Cisco ≫ Aironet 1850i Firmware Version017.006(001)

Cisco ≫ Aironet 1850i Version-

Cisco ≫ Aironet 2800i Firmware Version017.006(001)

Cisco ≫ Aironet 2800i Version-

Cisco ≫ Aironet 2800e Firmware Version017.006(001)

Cisco ≫ Aironet 2800e Version-

Cisco ≫ Aironet 3800i Firmware Version017.006(001)

Cisco ≫ Aironet 3800i Version-

Cisco ≫ Aironet 3800e Firmware Version017.006(001)

Cisco ≫ Aironet 3800e Version-

Cisco ≫ Aironet 3800p Firmware Version017.006(001)

Cisco ≫ Aironet 3800p Version-

Cisco ≫ Aironet 4800 Firmware Version017.006(001)

Cisco ≫ Aironet 4800 Version-

Cisco ≫ Catalyst 9105ax Firmware Version017.006(001)

Cisco ≫ Catalyst 9105ax Version-

Cisco ≫ Catalyst 9115ax Firmware Version017.006(001)

Cisco ≫ Catalyst 9115ax Version-

Cisco ≫ Catalyst 9117ax Firmware Version017.006(001)

Cisco ≫ Catalyst 9117ax Version-

Cisco ≫ Catalyst 9120ax Firmware Version017.006(001)

Cisco ≫ Catalyst 9120ax Version-

Cisco ≫ Catalyst 9124ax Firmware Version017.006(001)

Cisco ≫ Catalyst 9124ax Version-

Cisco ≫ Catalyst 9130ax Firmware Version017.006(001)

Cisco ≫ Catalyst 9130ax Version-

Cisco ≫ Catalyst Iw6300 Firmware Version017.006(001)

Cisco ≫ Catalyst Iw6300 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.03%	0.081

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	4.7	2.8	1.4	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
psirt@cisco.com	4.7	2.8	1.4	CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N

CWE-284 Improper Access Control

The product does not restrict or incorrectly restricts access to a resource from an unauthorized actor.

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apvlan-TDTtb4FY

Vendor Advisory

https://nvd.nist.gov/vuln/detail/CVE-2022-20728

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2022-20728

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2022-20728

EUVD