The Vigil@nce team watches public vulnerabilities impacting your computers, and then offers security solutions, a database and tools to fix them.

Computer vulnerabilities of Cisco Aironet

cybersecurity announce CVE-2019-1920

Cisco Aironet: denial of service via 802.11r Fast Transition

Synthesis of the vulnerability

An attacker can trigger a fatal error via 802.11r Fast Transition of Cisco Aironet, in order to trigger a denial of service.
Severity: 2/4.
Creation date: 19/07/2019.
Identifiers: CERTFR-2019-AVI-348, cisco-sa-20190717-aironet-dos, CSCvg95745, CVE-2019-1920, VIGILANCE-VUL-29830.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can trigger a fatal error via 802.11r Fast Transition of Cisco Aironet, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

cybersecurity bulletin CVE-2019-1654

Cisco Aironet: privilege escalation via Development Shell

Synthesis of the vulnerability

An attacker can bypass restrictions via Development Shell of Cisco Aironet, in order to escalate his privileges.
Severity: 2/4.
Creation date: 18/04/2019.
Identifiers: CERTFR-2019-AVI-181, cisco-sa-20190417-aironet-shell, CSCvk42764, CVE-2019-1654, VIGILANCE-VUL-29080.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can bypass restrictions via Development Shell of Cisco Aironet, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

security bulletin CVE-2019-1835

Cisco Aironet: directory traversal via CLI Commands

Synthesis of the vulnerability

An attacker can traverse directories via CLI Commands of Cisco Aironet, in order to read a file outside the service root path.
Severity: 2/4.
Creation date: 18/04/2019.
Identifiers: cisco-sa-20190417-air-ap-traversal, CSCvk79392, CVE-2019-1835, VIGILANCE-VUL-29079.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can traverse directories via CLI Commands of Cisco Aironet, in order to read a file outside the service root path.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability announce CVE-2019-1829

Cisco Aironet: privilege escalation via Command Injection

Synthesis of the vulnerability

An attacker can bypass restrictions via Command Injection of Cisco Aironet, in order to escalate his privileges.
Severity: 2/4.
Creation date: 18/04/2019.
Identifiers: cisco-sa-20190417-air-ap-cmdinj, CSCvk66471, CVE-2019-1829, VIGILANCE-VUL-29077.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can bypass restrictions via Command Injection of Cisco Aironet, in order to escalate his privileges.
Full Vigil@nce bulletin... (Free trial)

computer weakness note CVE-2019-1826

Cisco Aironet: denial of service via Quality of Service

Synthesis of the vulnerability

An attacker can trigger a fatal error via Quality of Service of Cisco Aironet, in order to trigger a denial of service.
Severity: 2/4.
Creation date: 18/04/2019.
Identifiers: cisco-sa-20190417-aap-dos, CSCvk58560, CVE-2019-1826, VIGILANCE-VUL-29076.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can trigger a fatal error via Quality of Service of Cisco Aironet, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

weakness announce CVE-2019-1675

Cisco Aironet Active Sensor: denial of service via Static Credentials Reboot

Synthesis of the vulnerability

An attacker can trigger a fatal error via Static Credentials Reboot of Cisco Aironet Active Sensor, in order to trigger a denial of service.
Severity: 2/4.
Creation date: 08/02/2019.
Identifiers: cisco-sa-20190206-aas-creds, CSCvn36382, CVE-2019-1675, VIGILANCE-VUL-28468.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can trigger a fatal error via Static Credentials Reboot of Cisco Aironet Active Sensor, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

threat note CVE-2018-16986

Aruba, Cisco Aironet, Meraki: memory corruption via Texas Instruments Bluetooth Low Energy

Synthesis of the vulnerability

An attacker can generate a memory corruption via Texas Instruments Bluetooth Low Energy of products of several editors, in order to trigger a denial of service, and possibly to run code.
Severity: 3/4.
Creation date: 05/11/2018.
Identifiers: ARUBA-PSA-2018-006, BleedingBit, CERTFR-2018-AVI-528, cisco-sa-20181101-ap, CSCvk44163, CVE-2018-16986, VIGILANCE-VUL-27688, VU#317277.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can generate a memory corruption via Texas Instruments Bluetooth Low Energy of products of several editors, in order to trigger a denial of service, and possibly to run code.
Full Vigil@nce bulletin... (Free trial)

threat note CVE-2018-0381

Cisco Aironet: denial of service via Aggregated Traffic Deadlock

Synthesis of the vulnerability

An attacker can generate a fatal error via Aggregated Traffic Deadlock of Cisco Aironet, in order to trigger a denial of service.
Severity: 2/4.
Creation date: 18/10/2018.
Identifiers: CERTFR-2018-AVI-502, cisco-sa-20181017-aironet-dos, CSCvh21953, CVE-2018-0381, VIGILANCE-VUL-27556.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can generate a fatal error via Aggregated Traffic Deadlock of Cisco Aironet, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

computer vulnerability announce CVE-2018-5391

Linux kernel: denial of service via FragmentSmack

Synthesis of the vulnerability

An attacker can generate a fatal error via FragmentSmack of the Linux kernel, in order to trigger a denial of service.
Severity: 2/4.
Creation date: 16/08/2018.
Identifiers: ADV180022, CERTFR-2018-AVI-390, CERTFR-2018-AVI-392, CERTFR-2018-AVI-419, CERTFR-2018-AVI-457, CERTFR-2018-AVI-478, CERTFR-2018-AVI-533, CERTFR-2019-AVI-233, CERTFR-2019-AVI-242, cisco-sa-20180824-linux-ip-fragment, CVE-2018-5391, DLA-1466-1, DLA-1529-1, DSA-2019-062, DSA-4272-1, FragmentSmack, JSA10917, K74374841, openSUSE-SU-2018:2404-1, openSUSE-SU-2018:2407-1, openSUSE-SU-2019:0274-1, PAN-SA-2018-0012, RHSA-2018:2785-01, RHSA-2018:2791-01, RHSA-2018:2846-01, RHSA-2018:2924-01, RHSA-2018:2925-01, RHSA-2018:2933-01, RHSA-2018:2948-01, RHSA-2018:3083-01, RHSA-2018:3096-01, RHSA-2018:3459-01, RHSA-2018:3540-01, RHSA-2018:3586-01, RHSA-2018:3590-01, sk134253, SUSE-SU-2018:2344-1, SUSE-SU-2018:2374-1, SUSE-SU-2018:2380-1, SUSE-SU-2018:2381-1, SUSE-SU-2018:2596-1, SUSE-SU-2019:0541-1, SUSE-SU-2019:1289-1, SYMSA1467, Synology-SA-18:44, USN-3740-1, USN-3740-2, USN-3741-1, USN-3741-2, USN-3741-3, USN-3742-1, USN-3742-2, USN-3742-3, VIGILANCE-VUL-27009, VU#641765.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can generate a fatal error via FragmentSmack of the Linux kernel, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)

computer threat note CVE-2018-0234

Cisco Aironet: denial of service via PPTP

Synthesis of the vulnerability

An attacker can generate a fatal error via PPTP of Cisco Aironet, in order to trigger a denial of service.
Severity: 2/4.
Creation date: 03/05/2018.
Identifiers: CERTFR-2018-AVI-211, cisco-sa-20180502-ap-ptp, CSCvf73890, CVE-2018-0234, VIGILANCE-VUL-26032.
Full Vigil@nce bulletin... (Free trial)

Description of the vulnerability

An attacker can generate a fatal error via PPTP of Cisco Aironet, in order to trigger a denial of service.
Full Vigil@nce bulletin... (Free trial)
Our database contains other pages. You can request a free trial to read them.

Display information about Cisco Aironet: