A vulnerability in the management CLI of Cisco access point (AP) software could allow an authenticated, local attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation of commands supplied by the user. An attacker could exploit this vulnerability by authenticating to a device and submitting crafted input to the affected command. A successful exploit could allow the attacker to cause an affected device to reload spontaneously, resulting in a DoS condition.
References
| Link | Resource |
|---|---|
| https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-cli-dos-tc2EKEpu | Vendor Advisory |
Configurations
Configuration 1 (hide)
| AND |
|
Configuration 2 (hide)
| AND |
|
Configuration 3 (hide)
|
History
30 Mar 2023, 19:18
| Type | Values Removed | Values Added |
|---|---|---|
| CWE | NVD-CWE-noinfo | |
| CVSS |
v2 : v3 : |
v2 : unknown
v3 : 5.5 |
| CPE | cpe:2.3:h:cisco:aironet_2800i:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9105axi:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9115_ap:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_3800:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9120ax:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_2800:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9120:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_3800e:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1810:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9120axp:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:esw6300:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1560:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1815t:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9124axd:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9115:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9117axi:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9120_ap:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9130_ap:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9130ax:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9100:-:*:*:*:*:*:*:* cpe:2.3:a:cisco:aironet_access_point_software:*:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1815m:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1815w:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9120axi:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9105ax:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_2800e:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_iw6300:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_4800:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1800i:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_3800i:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9130axe:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9105axw:-:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1542d:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1815i:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_3800p:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9124:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9130axi:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_iw6300_ac:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1540:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9115axi:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_iw6300_dcw:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9117_ap:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1810w:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1562d:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9130:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1815:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9105:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1562e:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9115ax:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9117:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1800:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9117ax:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1542i:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9120axe:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9115axe:-:*:*:*:*:*:*:* cpe:2.3:a:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:* cpe:2.3:h:cisco:aironet_1562i:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9124ax:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_iw6300_dc:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:catalyst_9124axi:-:*:*:*:*:*:*:* |
|
| First Time |
Cisco aironet 1800
Cisco catalyst 9117ax Cisco esw6300 Cisco Cisco catalyst 9120 Cisco catalyst Iw6300 Dc Cisco aironet 3800 Cisco aironet 1562d Cisco catalyst 9130axe Cisco ios Xe Cisco aironet 1815i Cisco aironet 1800i Cisco catalyst Iw6300 Ac Cisco catalyst 9120 Ap Cisco aironet 4800 Cisco aironet 3800i Cisco aironet 1560 Cisco aironet 1815m Cisco catalyst 9130 Ap Cisco catalyst 9105 Cisco catalyst 9115axi Cisco catalyst 9105axi Cisco catalyst 9117 Cisco catalyst 9120axp Cisco aironet Access Point Software Cisco catalyst 9120axi Cisco aironet 1540 Cisco catalyst 9115axe Cisco catalyst 9115 Ap Cisco catalyst 9120ax Cisco catalyst 9124 Cisco aironet 1810 Cisco catalyst Iw6300 Cisco aironet 1815t Cisco catalyst 9105axw Cisco aironet 3800p Cisco catalyst 9124axi Cisco catalyst 9100 Cisco aironet 2800i Cisco catalyst 9115ax Cisco catalyst 9117axi Cisco catalyst 9124ax Cisco catalyst 9105ax Cisco catalyst 9124axd Cisco aironet 2800 Cisco catalyst 9117 Ap Cisco wireless Lan Controller Software Cisco aironet 1810w Cisco catalyst 9130axi Cisco catalyst Iw6300 Dcw Cisco catalyst 9120axe Cisco catalyst 9130 Cisco catalyst 9115 Cisco aironet 1815 Cisco aironet 1542d Cisco aironet 1542i Cisco aironet 1815w Cisco aironet 2800e Cisco catalyst 9130ax Cisco aironet 1562e Cisco aironet 3800e Cisco aironet 1562i |
|
| References | (CISCO) https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-ap-cli-dos-tc2EKEpuĀ - Vendor Advisory |
23 Mar 2023, 17:15
| Type | Values Removed | Values Added |
|---|---|---|
| New CVE |
Information
Published : 2023-03-23 17:15
Updated : 2023-12-10 15:01
NVD link : CVE-2023-20056
Mitre link : CVE-2023-20056
CVE.ORG link : CVE-2023-20056
JSON object : View
Products Affected
cisco
- aironet_1540
- aironet_2800e
- catalyst_9115axe
- aironet_2800i
- wireless_lan_controller_software
- catalyst_9115axi
- catalyst_9117
- catalyst_9117axi
- catalyst_9124axi
- aironet_2800
- catalyst_9105ax
- aironet_1542d
- catalyst_9115_ap
- catalyst_9117_ap
- catalyst_9120_ap
- catalyst_iw6300_ac
- aironet_1815w
- aironet_1542i
- aironet_1800
- catalyst_9115ax
- catalyst_9130_ap
- esw6300
- catalyst_9124axd
- aironet_1815m
- aironet_1815
- aironet_1815i
- catalyst_9130
- catalyst_9120axi
- catalyst_9100
- catalyst_9105axw
- catalyst_iw6300
- aironet_1815t
- catalyst_9130axe
- catalyst_9124
- aironet_1810
- aironet_4800
- catalyst_9105axi
- catalyst_9120axe
- catalyst_9120ax
- catalyst_9120axp
- catalyst_iw6300_dc
- catalyst_iw6300_dcw
- catalyst_9130axi
- aironet_access_point_software
- catalyst_9105
- ios_xe
- aironet_1800i
- aironet_1562e
- aironet_1560
- aironet_1810w
- catalyst_9117ax
- catalyst_9120
- catalyst_9115
- aironet_3800i
- catalyst_9124ax
- catalyst_9130ax
- aironet_3800
- aironet_1562i
- aironet_3800p
- aironet_1562d
- aironet_3800e
CWE
NVD-CWE-noinfo
CWE-78
Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')