CVE-2019-1920

Name of the Vulnerable Software and Affected Versions Cisco IOS Access Points (APs) Software (affected versions not specified)

Description The issue is related to insufficient input validation in the 802.11r Fast Transition implementation of Cisco IOS Access Points (APs) Software. This could allow a remote attacker to cause a denial of service condition by sending specially crafted authentication request traffic to a targeted interface configured for Fast Transition. The vulnerability is due to a lack of complete error handling for client authentication requests.

Recommendations For Cisco IOS Access Points (APs) Software, consider disabling the Fast Transition feature until a patch is available to prevent exploitation. Restrict access to the affected interface to minimize the risk of denial of service attacks. Avoid using the Fast Transition feature in environments where availability is critical until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.