TROYANOSYVIRUS
Volver a CVEs

CVE-2022-20728

MEDIUM
4.7

Descripcion

A vulnerability in the client forwarding code of multiple Cisco Access Points (APs) could allow an unauthenticated, adjacent attacker to inject packets from the native VLAN to clients within nonnative VLANs on an affected device. This vulnerability is due to a logic error on the AP that forwards packets that are destined to a wireless client if they are received on the native VLAN. An attacker could exploit this vulnerability by obtaining access to the native VLAN and directing traffic directly to the client through their MAC/IP combination. A successful exploit could allow the attacker to bypass VLAN separation and potentially also bypass any Layer 3 protection mechanisms that are deployed.

Detalles CVE

Puntuacion CVSS v3.14.7
SeveridadMEDIUM
Vector CVSSCVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:L/A:N
Vector de ataqueADJACENT_NETWORK
ComplejidadLOW
Privilegios requeridosNONE
Interaccion usuarioNONE
Publicado9/30/2022
Ultima modificacion11/21/2024
Fuentenvd
Avistamientos honeypot0

Productos afectados

cisco:aironet_1542dcisco:aironet_1542d_firmwarecisco:aironet_1542icisco:aironet_1542i_firmwarecisco:aironet_1562dcisco:aironet_1562d_firmwarecisco:aironet_1562ecisco:aironet_1562e_firmwarecisco:aironet_1562icisco:aironet_1562i_firmwarecisco:aironet_1815icisco:aironet_1815i_firmwarecisco:aironet_1815mcisco:aironet_1815m_firmwarecisco:aironet_1815tcisco:aironet_1815t_firmwarecisco:aironet_1815wcisco:aironet_1815w_firmwarecisco:aironet_1830cisco:aironet_1830_firmwarecisco:aironet_1840cisco:aironet_1840_firmwarecisco:aironet_1850ecisco:aironet_1850e_firmwarecisco:aironet_1850icisco:aironet_1850i_firmwarecisco:aironet_2800ecisco:aironet_2800e_firmwarecisco:aironet_2800icisco:aironet_2800i_firmwarecisco:aironet_3800ecisco:aironet_3800e_firmwarecisco:aironet_3800icisco:aironet_3800i_firmwarecisco:aironet_3800pcisco:aironet_3800p_firmwarecisco:aironet_4800cisco:aironet_4800_firmwarecisco:catalyst_9105axcisco:catalyst_9105ax_firmwarecisco:catalyst_9115axcisco:catalyst_9115ax_firmwarecisco:catalyst_9117axcisco:catalyst_9117ax_firmwarecisco:catalyst_9120axcisco:catalyst_9120ax_firmwarecisco:catalyst_9124axcisco:catalyst_9124ax_firmwarecisco:catalyst_9130axcisco:catalyst_9130ax_firmwarecisco:catalyst_iw6300cisco:catalyst_iw6300_firmware

Debilidades (CWE)

CWE-284

Referencias

https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apvlan-TDTtb4FY(psirt@cisco.com)
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-apvlan-TDTtb4FY(af854a3a-2127-422b-91ae-364da2661108)

Correlaciones IOC

Sin correlaciones registradas

This product uses data from the NVD API but is not endorsed or certified by the NVD.