CVE-2019-1826

MEDIUM Year: 2019
CVSS v3 Score
5.7
Medium
CVSS v2 Score
5.5
Medium
Weakness Type
CWE-20
View all →

Vulnerability Description

A vulnerability in the quality of service (QoS) feature of Cisco Aironet Series Access Points (APs) could allow an authenticated, adjacent attacker to cause a denial of service (DoS) condition on an affected device. The vulnerability is due to improper input validation on QoS fields within Wi-Fi frames by the affected device. An attacker could exploit this vulnerability by sending malformed Wi-Fi frames to an affected device. A successful exploit could allow the attacker to cause the affected device to crash, resulting in a DoS condition.

Related Vulnerabilities

CVE-2016-1156

MEDIUM
CVSS:5.7(Medium)

LINE 4.3.0.724 and earlier on Windows and 4.3.1 and earlier on OS X allows remote authenticated users to cause a denial of service (application crash) via a crafted post that is mishandled when displa...

CWE-202016

CVE-2016-5947

MEDIUM
CVSS:5.7(Medium)

IBM Spectrum Control (formerly Tivoli Storage Productivity Center) 5.2.x before 5.2.11 allows remote authenticated users to conduct clickjacking attacks via a crafted web site.

CWE-202016

CVE-2016-9719

MEDIUM
CVSS:5.7(Medium)

IBM InfoSphere Master Data Management Server 10.1. 11.0. 11.3, 11.4, 11.5, and 11.6 could allow a remote attacker to hijack the clicking action of the victim. By persuading a victim to visit a malicio...

CWE-202016

CVE-2017-17860

MEDIUM
CVSS:5.7(Medium)

In Samsung Gear products, Bluetooth link key is updated to the different key which is same with attacker's link key. It can be attacked without user's intention only if attacker can reveal the Bluetoo...

CWE-202017

CVE-2017-8969

MEDIUM
CVSS:5.7(Medium)

An improper input validation vulnerability in HPE Insight Control version 7.6 LR1 was found.

CWE-202017

CVE-2017-9773

MEDIUM
CVSS:5.7(Medium)

Denial of Service was found in Horde_Image 2.x before 2.5.0 via a crafted URL to the "Null" image driver.

CWE-202017