CVE-2019-1826

Name of the Vulnerable Software and Affected Versions Cisco Aironet Series Access Points versions 1560, 2800, 3800, 4800

Description A vulnerability in the quality of service (QoS) feature could allow an authenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The issue is due to improper input validation on QoS fields within Wi-Fi frames by the affected device. An attacker could exploit this by sending malformed Wi-Fi frames to an affected device, potentially causing the device to crash and resulting in a DoS condition.

Recommendations For Cisco Aironet Series Access Points versions 1560, 2800, 3800, 4800, consider disabling the QoS feature as a temporary workaround until a patch is available. Restrict access to the affected devices to minimize the risk of exploitation. Avoid using the affected devices in sensitive environments until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.