A vulnerability in the IP packet processing of Cisco Access Point (AP) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device.
This vulnerability is due to insufficient input validation of certain IPv4 packets. An attacker could exploit this vulnerability by sending a crafted IPv4 packet either to or through an affected device. A successful exploit could allow the attacker to cause an affected device to reload unexpectedly, resulting in a DoS condition. To successfully exploit this vulnerability, the attacker does not need to be associated with the affected AP. This vulnerability cannot be exploited by sending IPv6 packets.
This vulnerability is due to insufficient input validation of certain IPv4 packets. An attacker could exploit this vulnerability by sending a crafted IPv4 packet either to or through an affected device. A successful exploit could allow the attacker to cause an affected device to reload unexpectedly, resulting in a DoS condition. To successfully exploit this vulnerability, the attacker does not need to be associated with the affected AP. This vulnerability cannot be exploited by sending IPv6 packets.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Cisco | Cisco Aironet Access Point Software | affected |
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Cisco | Cisco Business Wireless Access Point Software | affected |
|
||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||||
| Cisco | Cisco Aironet Access Point Software (IOS XE Controller) | affected |
|
Configuration 1 [-]
|
Configuration 2 [-]
| AND |
|
Configuration 3 [-]
| AND |
|
Configuration 4 [-]
|
No data.
No data.
Project Subscriptions
| Vendors | Products |
|---|---|
|
Cisco
Subscribe
|
Business 140ac
Subscribe
Business 140ac Access Point
Subscribe
Business 141acm
Subscribe
Business 142acm
Subscribe
Business 143acm
Subscribe
Business 145ac
Subscribe
Business 145ac Access Point
Subscribe
Business 150ax
Subscribe
Business 150ax Access Point
Subscribe
Business 151axm
Subscribe
Business 240ac
Subscribe
Business Access Points
Subscribe
Ios Xe
Subscribe
Wireless Lan Controller Software
Subscribe
|
Advisories
| Source | ID | Title |
|---|---|---|
 EUVD |
EUVD-2024-17986 | A vulnerability in the IP packet processing of Cisco Access Point (AP) Software could allow an unauthenticated, remote attacker to cause a denial of service (DoS) condition on an affected device. This vulnerability is due to insufficient input validation of certain IPv4 packets. An attacker could exploit this vulnerability by sending a crafted IPv4 packet either to or through an affected device. A successful exploit could allow the attacker to cause an affected device to reload unexpectedly, resulting in a DoS condition. To successfully exploit this vulnerability, the attacker does not need to be associated with the affected AP. This vulnerability cannot be exploited by sending IPv6 packets. |
Fixes
Solution
No solution given by the vendor.
Workaround
No workaround given by the vendor.
References
History
Wed, 06 Aug 2025 14:00:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Cisco
Cisco business 140ac Cisco business 140ac Access Point Cisco business 141acm Cisco business 142acm Cisco business 143acm Cisco business 145ac Cisco business 145ac Access Point Cisco business 150ax Cisco business 150ax Access Point Cisco business 151axm Cisco business 240ac Cisco business Access Points Cisco ios Xe Cisco wireless Lan Controller Software |
|
| Weaknesses | NVD-CWE-Other | |
| CPEs | cpe:2.3:a:cisco:business_access_points:*:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_140ac:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_140ac_access_point:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_141acm:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_142acm:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_143acm:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_145ac:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_145ac_access_point:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_150ax:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_150ax_access_point:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_151axm:-:*:*:*:*:*:*:* cpe:2.3:h:cisco:business_240ac:-:*:*:*:*:*:*:* cpe:2.3:o:cisco:ios_xe:*:*:*:*:*:*:*:* cpe:2.3:o:cisco:wireless_lan_controller_software:*:*:*:*:*:*:*:* |
|
| Vendors & Products |
Cisco
Cisco business 140ac Cisco business 140ac Access Point Cisco business 141acm Cisco business 142acm Cisco business 143acm Cisco business 145ac Cisco business 145ac Access Point Cisco business 150ax Cisco business 150ax Access Point Cisco business 151axm Cisco business 240ac Cisco business Access Points Cisco ios Xe Cisco wireless Lan Controller Software |
Projects
Sign in to view the affected projects.
MITRE
Status: PUBLISHED
Assigner: cisco
Published:
Updated: 2024-08-01T21:52:38.878Z
Reserved: 2023-11-08T15:08:07.624Z
Link: CVE-2024-20271
Vulnrichment
Updated: 2024-08-01T21:52:38.878Z
NVD
Status : Analyzed
Published: 2024-03-27T17:15:51.320
Modified: 2025-08-06T13:45:24.563
Link: CVE-2024-20271
Redhat
No data.
OpenCVE Enrichment
No data.
Weaknesses