Vulnerability Database

289,697

Total vulnerabilities in the database

CVE-2019-1920

A vulnerability in the 802.11r Fast Transition (FT) implementation for Cisco IOS Access Points (APs) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected interface. The vulnerability is due to a lack of complete error handling condition for client authentication requests sent to a targeted interface configured for FT. An attacker could exploit this vulnerability by sending crafted authentication request traffic to the targeted interface, causing the device to restart unexpectedly.

  • Published: Jul 17, 2019
  • Updated: Apr 13, 2023
  • CVE: CVE-2019-1920
  • Severity: High
  • Exploit:

CVSS v3:

  • Severity: High
  • Score: 7.4
  • AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

CVSS v2:

  • Severity: Medium
  • Score: 6.1
  • AV:A/AC:L/Au:N/C:N/I:N/A:C

No CWE or OWASP classifications available.

Software From Fixed in
cisco / aironet_3700e_firmware 15.3(3)jc14 15.3(3)jc14.x
cisco / aironet_3700e_firmware 15.3(3)jd6 15.3(3)jd6.x
cisco / aironet_3700i_firmware 15.3(3)jc14 15.3(3)jc14.x
cisco / aironet_3700i_firmware 15.3(3)jd6 15.3(3)jd6.x
cisco / aironet_3700p_firmware 15.3(3)jc14 15.3(3)jc14.x
cisco / aironet_3700p_firmware 15.3(3)jd6 15.3(3)jd6.x
cisco / access_points 8.6 8.8.100.0
cisco / access_points 8.4 8.5.131.0
cisco / access_points 8.3 8.3.150.0
cisco / access_points - 8.2.170.0