HOMEVULNERABILITIESCVE-2024-20354
HIGH

CVE-2024-20354

CWE-460Published: March 27, 2024· Updated: Jun 17, 2026

7.4
CVSS v3.1

Official Description

A vulnerability in the handling of encrypted wireless frames of Cisco Aironet Access Point (AP) Software could allow an unauthenticated, adjacent attacker to cause a denial of service (DoS) condition on the affected device.

This vulnerability is due to incomplete cleanup of resources when dropping certain malformed frames. An attacker could exploit this vulnerability by connecting as a wireless client to an affected AP and sending specific malformed frames over the wireless connection. A successful exploit could allow the attacker to cause degradation of service to other clients, which could potentially lead to a complete DoS condition.

NVD Source

Technical Analysis

CVE-2024-20354 requires adjacent network access, limiting remote exploitation but still posing risk in shared or local network environments.

The vulnerability requires no privileges and no user interaction, making it a prime target for automated exploitation campaigns and worm-like propagation.

A successful exploit results in availability disruption (denial of service), with a CVSS base score of 7.4.

The vulnerability has a "Changed" scope, meaning successful exploitation can impact components beyond the vulnerable component itself — such as the host operating system or adjacent services.

CVSS v3.1 Vector Breakdown

Exploitability
Attack VectorAdjacent
Attack ComplexityLow
Privileges Req.None
User InteractionNone
ScopeChanged
Impact
ConfidentialityNone
IntegrityNone
AvailabilityHigh
CVSS:3.1/AV:A/AC:L/PR:N/UI:N/S:C/C:N/I:N/A:H

Affected Vendors & Products

Cisco17 product(s)
wireless lan controller softwareaironet 1530eaironet 1530iaironet 1552haironet 1552saironet 1552wuaironet 1700iaironet 2700eaironet 2700iaironet 3700eaironet 3700iaironet 3700p+5
Source: NVD CPE · 17 total CPE entries

Exploit & PoC Resources

NO KNOWN EXPLOITNo public exploit confirmed at this time
External links open in a new tab. Always verify in a controlled environment before use.

Official Patches & Advisories

All References (2)

Quick Facts

CVE IDCVE-2024-20354
CVSS Score7.4 / 10
SeverityHIGH
WeaknessCWE-460
CISA KEVNo
Affected1 vendor(s)
PublishedMar 27, 2024

Related CVEs (CWE-460)

Recommended Actions

  • Apply vendor patches immediately
  • Monitor CVE-2024-20354 in threat intel feeds
  • Review IDS/IPS signatures for exploitation attempts
Data sourced from NVD (NIST), CISA KEV, and EPSS (FIRST). Analysis generated by CTIWATCH.COM. CVE data is provided under the NVD usage policy.