var-201608-0226
Vulnerability from variot
The rate-limit feature in the 802.11 protocol implementation on Cisco Aironet 1800, 2800, and 3800 devices with software before 8.2.121.0 and 8.3.x before 8.3.102.0 allows remote attackers to cause a denial of service (device reload) via crafted 802.11 frames, aka Bug ID CSCva06192. Cisco Aironet AccessPoint is a small and medium-sized wireless network access point product. Cisco Aironet Access Points is prone to a denial-of-service vulnerability. Attackers can exploit this issue to reload the affected device, denying service to legitimate users. This issue is being tracked by Cisco Bug ID CSCva06192. Cisco Aironet 1800, 2800, and 3800 are all routers of Cisco (Cisco). Limit the speed of 802.11 traffic
Show details on source website{
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/VARIoTentry#",
"affected_products": {
"@id": "https://www.variotdbs.pl/ref/affected_products"
},
"configurations": {
"@id": "https://www.variotdbs.pl/ref/configurations"
},
"credits": {
"@id": "https://www.variotdbs.pl/ref/credits"
},
"cvss": {
"@id": "https://www.variotdbs.pl/ref/cvss/"
},
"description": {
"@id": "https://www.variotdbs.pl/ref/description/"
},
"exploit_availability": {
"@id": "https://www.variotdbs.pl/ref/exploit_availability/"
},
"external_ids": {
"@id": "https://www.variotdbs.pl/ref/external_ids/"
},
"iot": {
"@id": "https://www.variotdbs.pl/ref/iot/"
},
"iot_taxonomy": {
"@id": "https://www.variotdbs.pl/ref/iot_taxonomy/"
},
"patch": {
"@id": "https://www.variotdbs.pl/ref/patch/"
},
"problemtype_data": {
"@id": "https://www.variotdbs.pl/ref/problemtype_data/"
},
"references": {
"@id": "https://www.variotdbs.pl/ref/references/"
},
"sources": {
"@id": "https://www.variotdbs.pl/ref/sources/"
},
"sources_release_date": {
"@id": "https://www.variotdbs.pl/ref/sources_release_date/"
},
"sources_update_date": {
"@id": "https://www.variotdbs.pl/ref/sources_update_date/"
},
"threat_type": {
"@id": "https://www.variotdbs.pl/ref/threat_type/"
},
"title": {
"@id": "https://www.variotdbs.pl/ref/title/"
},
"type": {
"@id": "https://www.variotdbs.pl/ref/type/"
}
},
"@id": "https://www.variotdbs.pl/vuln/VAR-201608-0226",
"affected_products": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/affected_products#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"model": "aironet access point software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.2\\(100.0\\)"
},
{
"model": "aironet access point software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.1\\(15.14\\)"
},
{
"model": "aironet access point software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.1\\(112.3\\)"
},
{
"model": "aironet access point software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.2\\(102.43\\)"
},
{
"model": "aironet access point software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.1\\(131.0\\)"
},
{
"model": "aironet access point software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.1\\(112.4\\)"
},
{
"model": "aironet access point software",
"scope": "eq",
"trust": 1.6,
"vendor": "cisco",
"version": "8.3.0"
},
{
"model": "aironet access point software",
"scope": "lt",
"trust": 0.8,
"vendor": "cisco",
"version": "8.3.x"
},
{
"model": "aironet access point software",
"scope": "eq",
"trust": 0.8,
"vendor": "cisco",
"version": "8.3.102.0"
},
{
"model": "aironet series access point",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "3800"
},
{
"model": "aironet series access point",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "2800"
},
{
"model": "aironet series access point",
"scope": "eq",
"trust": 0.6,
"vendor": "cisco",
"version": "1800"
},
{
"model": "aironet series access points",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "38000"
},
{
"model": "aironet series access points",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "28000"
},
{
"model": "aironet series access points",
"scope": "eq",
"trust": 0.3,
"vendor": "cisco",
"version": "18000"
},
{
"model": "aironet series access points",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "38008.3.102.0"
},
{
"model": "aironet series access points",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "38008.2.121.0"
},
{
"model": "aironet series access points",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "28008.3.102.0"
},
{
"model": "aironet series access points",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "28008.2.121.0"
},
{
"model": "aironet series access points",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "18008.3.102.0"
},
{
"model": "aironet series access points",
"scope": "ne",
"trust": 0.3,
"vendor": "cisco",
"version": "18008.2.121.0"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06436"
},
{
"db": "BID",
"id": "92511"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004435"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-333"
},
{
"db": "NVD",
"id": "CVE-2016-6363"
}
]
},
"configurations": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/configurations#",
"children": {
"@container": "@list"
},
"cpe_match": {
"@container": "@list"
},
"data": {
"@container": "@list"
},
"nodes": {
"@container": "@list"
}
},
"data": [
{
"CVE_data_version": "4.0",
"nodes": [
{
"cpe_match": [
{
"cpe22Uri": "cpe:/a:cisco:aironet_access_point_software",
"vulnerable": true
}
],
"operator": "OR"
}
]
}
],
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2016-004435"
}
]
},
"credits": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/credits#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "Cisco",
"sources": [
{
"db": "BID",
"id": "92511"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-333"
}
],
"trust": 0.9
},
"cve": "CVE-2016-6363",
"cvss": {
"@context": {
"cvssV2": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV2#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV2"
},
"cvssV3": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/cvss/cvssV3#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/cvssV3/"
},
"severity": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/cvss/severity#"
},
"@id": "https://www.variotdbs.pl/ref/cvss/severity"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
},
"@id": "https://www.variotdbs.pl/ref/sources"
}
},
"data": [
{
"cvssV2": [
{
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "nvd@nist.gov",
"availabilityImpact": "COMPLETE",
"baseScore": 6.1,
"confidentialityImpact": "NONE",
"exploitabilityScore": 6.5,
"id": "CVE-2016-6363",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 1.8,
"vectorString": "AV:A/AC:L/Au:N/C:N/I:N/A:C",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"author": "CNVD",
"availabilityImpact": "PARTIAL",
"baseScore": 5.0,
"confidentialityImpact": "NONE",
"exploitabilityScore": 10.0,
"id": "CNVD-2016-06436",
"impactScore": 2.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.6,
"vectorString": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"version": "2.0"
},
{
"accessComplexity": "LOW",
"accessVector": "ADJACENT_NETWORK",
"authentication": "NONE",
"author": "VULHUB",
"availabilityImpact": "COMPLETE",
"baseScore": 6.1,
"confidentialityImpact": "NONE",
"exploitabilityScore": 6.5,
"id": "VHN-95183",
"impactScore": 6.9,
"integrityImpact": "NONE",
"severity": "MEDIUM",
"trust": 0.1,
"vectorString": "AV:A/AC:L/AU:N/C:N/I:N/A:C",
"version": "2.0"
}
],
"cvssV3": [
{
"attackComplexity": "LOW",
"attackVector": "ADJACENT",
"author": "nvd@nist.gov",
"availabilityImpact": "HIGH",
"baseScore": 6.5,
"baseSeverity": "MEDIUM",
"confidentialityImpact": "NONE",
"exploitabilityScore": 2.8,
"id": "CVE-2016-6363",
"impactScore": 3.6,
"integrityImpact": "NONE",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"trust": 1.8,
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:A/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"version": "3.0"
}
],
"severity": [
{
"author": "nvd@nist.gov",
"id": "CVE-2016-6363",
"trust": 1.0,
"value": "MEDIUM"
},
{
"author": "NVD",
"id": "CVE-2016-6363",
"trust": 0.8,
"value": "Medium"
},
{
"author": "CNVD",
"id": "CNVD-2016-06436",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "CNNVD",
"id": "CNNVD-201608-333",
"trust": 0.6,
"value": "MEDIUM"
},
{
"author": "VULHUB",
"id": "VHN-95183",
"trust": 0.1,
"value": "MEDIUM"
}
]
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06436"
},
{
"db": "VULHUB",
"id": "VHN-95183"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004435"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-333"
},
{
"db": "NVD",
"id": "CVE-2016-6363"
}
]
},
"description": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/description#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "The rate-limit feature in the 802.11 protocol implementation on Cisco Aironet 1800, 2800, and 3800 devices with software before 8.2.121.0 and 8.3.x before 8.3.102.0 allows remote attackers to cause a denial of service (device reload) via crafted 802.11 frames, aka Bug ID CSCva06192. Cisco Aironet AccessPoint is a small and medium-sized wireless network access point product. Cisco Aironet Access Points is prone to a denial-of-service vulnerability. \nAttackers can exploit this issue to reload the affected device, denying service to legitimate users. \nThis issue is being tracked by Cisco Bug ID CSCva06192. Cisco Aironet 1800, 2800, and 3800 are all routers of Cisco (Cisco). Limit the speed of 802.11 traffic",
"sources": [
{
"db": "NVD",
"id": "CVE-2016-6363"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004435"
},
{
"db": "CNVD",
"id": "CNVD-2016-06436"
},
{
"db": "BID",
"id": "92511"
},
{
"db": "VULHUB",
"id": "VHN-95183"
}
],
"trust": 2.52
},
"external_ids": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/external_ids#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"db": "NVD",
"id": "CVE-2016-6363",
"trust": 3.4
},
{
"db": "BID",
"id": "92511",
"trust": 2.6
},
{
"db": "SECTRACK",
"id": "1036645",
"trust": 1.1
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004435",
"trust": 0.8
},
{
"db": "CNNVD",
"id": "CNNVD-201608-333",
"trust": 0.7
},
{
"db": "CNVD",
"id": "CNVD-2016-06436",
"trust": 0.6
},
{
"db": "NSFOCUS",
"id": "34592",
"trust": 0.6
},
{
"db": "VULHUB",
"id": "VHN-95183",
"trust": 0.1
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06436"
},
{
"db": "VULHUB",
"id": "VHN-95183"
},
{
"db": "BID",
"id": "92511"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004435"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-333"
},
{
"db": "NVD",
"id": "CVE-2016-6363"
}
]
},
"id": "VAR-201608-0226",
"iot": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": true,
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06436"
},
{
"db": "VULHUB",
"id": "VHN-95183"
}
],
"trust": 1.19107143
},
"iot_taxonomy": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/iot_taxonomy#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"category": [
"Network device"
],
"sub_category": null,
"trust": 0.6
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06436"
}
]
},
"last_update_date": "2024-11-23T22:56:21.494000Z",
"patch": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/patch#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"title": "cisco-sa-20160817-aap2",
"trust": 0.8,
"url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20160817-aap2"
},
{
"title": "Patch for CiscoAironetAccessPoints Platform Denial of Service Vulnerability",
"trust": 0.6,
"url": "https://www.cnvd.org.cn/patchInfo/show/80565"
},
{
"title": "Cisco Aironet 1800 , 2800 and 3800 Repair measures for platform denial of service vulnerabilities",
"trust": 0.6,
"url": "http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=63699"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06436"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004435"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-333"
}
]
},
"problemtype_data": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/problemtype_data#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"problemtype": "CWE-119",
"trust": 1.9
}
],
"sources": [
{
"db": "VULHUB",
"id": "VHN-95183"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004435"
},
{
"db": "NVD",
"id": "CVE-2016-6363"
}
]
},
"references": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/references#",
"data": {
"@container": "@list"
},
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": [
{
"trust": 2.3,
"url": "http://www.securityfocus.com/bid/92511"
},
{
"trust": 2.0,
"url": "http://tools.cisco.com/security/center/content/ciscosecurityadvisory/cisco-sa-20160817-aap2"
},
{
"trust": 1.1,
"url": "http://www.securitytracker.com/id/1036645"
},
{
"trust": 0.8,
"url": "http://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2016-6363"
},
{
"trust": 0.8,
"url": "http://web.nvd.nist.gov/view/vuln/detail?vulnid=cve-2016-6363"
},
{
"trust": 0.6,
"url": "http://www.nsfocus.net/vulndb/34592"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/cisco/web/solutions/small_business/products/wireless/aironet_series_access_points/index.html"
},
{
"trust": 0.3,
"url": "http://www.cisco.com/"
}
],
"sources": [
{
"db": "CNVD",
"id": "CNVD-2016-06436"
},
{
"db": "VULHUB",
"id": "VHN-95183"
},
{
"db": "BID",
"id": "92511"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004435"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-333"
},
{
"db": "NVD",
"id": "CVE-2016-6363"
}
]
},
"sources": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#",
"data": {
"@container": "@list"
}
},
"data": [
{
"db": "CNVD",
"id": "CNVD-2016-06436"
},
{
"db": "VULHUB",
"id": "VHN-95183"
},
{
"db": "BID",
"id": "92511"
},
{
"db": "JVNDB",
"id": "JVNDB-2016-004435"
},
{
"db": "CNNVD",
"id": "CNNVD-201608-333"
},
{
"db": "NVD",
"id": "CVE-2016-6363"
}
]
},
"sources_release_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_release_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2016-08-22T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-06436"
},
{
"date": "2016-08-22T00:00:00",
"db": "VULHUB",
"id": "VHN-95183"
},
{
"date": "2016-08-17T00:00:00",
"db": "BID",
"id": "92511"
},
{
"date": "2016-08-23T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-004435"
},
{
"date": "2016-08-18T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201608-333"
},
{
"date": "2016-08-22T10:59:12.137000",
"db": "NVD",
"id": "CVE-2016-6363"
}
]
},
"sources_update_date": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources_update_date#",
"data": {
"@container": "@list"
}
},
"data": [
{
"date": "2016-08-19T00:00:00",
"db": "CNVD",
"id": "CNVD-2016-06436"
},
{
"date": "2016-12-12T00:00:00",
"db": "VULHUB",
"id": "VHN-95183"
},
{
"date": "2016-08-17T00:00:00",
"db": "BID",
"id": "92511"
},
{
"date": "2016-08-23T00:00:00",
"db": "JVNDB",
"id": "JVNDB-2016-004435"
},
{
"date": "2016-08-23T00:00:00",
"db": "CNNVD",
"id": "CNNVD-201608-333"
},
{
"date": "2024-11-21T02:55:59",
"db": "NVD",
"id": "CVE-2016-6363"
}
]
},
"threat_type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/threat_type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "specific network environment",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201608-333"
}
],
"trust": 0.6
},
"title": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/title#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "plural Cisco Aironet Device software 802.11 Denial of service in rate limiting function of protocol implementation (DoS) Vulnerabilities",
"sources": [
{
"db": "JVNDB",
"id": "JVNDB-2016-004435"
}
],
"trust": 0.8
},
"type": {
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/type#",
"sources": {
"@container": "@list",
"@context": {
"@vocab": "https://www.variotdbs.pl/ref/sources#"
}
}
},
"data": "buffer overflow",
"sources": [
{
"db": "CNNVD",
"id": "CNNVD-201608-333"
}
],
"trust": 0.6
}
}
Loading…
Loading…
Sightings
| Author | Source | Type | Date |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or seen somewhere by the user.
- Confirmed: The vulnerability is confirmed from an analyst perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: This vulnerability was exploited and seen by the user reporting the sighting.
- Patched: This vulnerability was successfully patched by the user reporting the sighting.
- Not exploited: This vulnerability was not exploited or seen by the user reporting the sighting.
- Not confirmed: The user expresses doubt about the veracity of the vulnerability.
- Not patched: This vulnerability was not successfully patched by the user reporting the sighting.
Loading…
Loading…