CVE-2024-20336 - Vulnerability Details

A vulnerability in the web-based user interface of Cisco Small Business 100, 300, and 500 Series Wireless APs could allow an authenticated, remote attacker to perform buffer overflow attacks against an affected device. In order to exploit this vulnerability, the attacker must have valid administrative credentials for the device. This vulnerability is due to insufficient validation of user-supplied input. An attacker could exploit this vulnerability by sending a crafted HTTP request to the web-based management interface of an affected device. A successful exploit could allow the attacker to execute arbitrary code as the root user on the underlying operating system.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Cisco	Wap121 Wap121 Firmware Wap125 Wap125 Firmware Wap131 Wap131 Firmware Wap150 Wap150 Firmware Wap320 Wap320 Firmware Wap321 Wap321 Firmware Wap351 Wap351 Firmware Wap361 Wap361 Firmware Wap371 Wap371 Firmware Wap571 Wap571 Firmware Wap571e Wap571e Firmware Wap581 Wap581 Firmware

Configuration 1 [-]

AND

cpe:2.3:o:cisco:wap121_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:wap121:-:*:*:*:*:*:*:*

Configuration 2 [-]

AND

cpe:2.3:o:cisco:wap125_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:wap125:-:*:*:*:*:*:*:*

Configuration 3 [-]

AND

cpe:2.3:o:cisco:wap131_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:wap131:-:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:cisco:wap150_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:wap150:-:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:cisco:wap320_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:wap320:-:*:*:*:*:*:*:*

Configuration 6 [-]

AND

cpe:2.3:o:cisco:wap321_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:wap321:-:*:*:*:*:*:*:*

Configuration 7 [-]

AND

cpe:2.3:o:cisco:wap351_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:wap351:-:*:*:*:*:*:*:*

Configuration 8 [-]

AND

cpe:2.3:o:cisco:wap361_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:wap361:-:*:*:*:*:*:*:*

Configuration 9 [-]

AND

cpe:2.3:o:cisco:wap571_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:wap571:-:*:*:*:*:*:*:*

Configuration 10 [-]

AND

cpe:2.3:o:cisco:wap371_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:wap371:-:*:*:*:*:*:*:*

Configuration 11 [-]

AND

cpe:2.3:o:cisco:wap571e_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:wap571e:-:*:*:*:*:*:*:*

Configuration 12 [-]

AND

cpe:2.3:o:cisco:wap581_firmware:-:*:*:*:*:*:*:*

cpe:2.3:h:cisco:wap581:-:*:*:*:*:*:*:*

No data.

References

Link	Providers
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-sb-wap-multi-85G83CRB

History

Tue, 05 Aug 2025 14:45:00 +0000

Type	Values Removed	Values Added
First Time appeared		Cisco Cisco wap121 Cisco wap121 Firmware Cisco wap125 Cisco wap125 Firmware Cisco wap131 Cisco wap131 Firmware Cisco wap150 Cisco wap150 Firmware Cisco wap320 Cisco wap320 Firmware Cisco wap321 Cisco wap321 Firmware Cisco wap351 Cisco wap351 Firmware Cisco wap361 Cisco wap361 Firmware Cisco wap371 Cisco wap371 Firmware Cisco wap571 Cisco wap571 Firmware Cisco wap571e Cisco wap571e Firmware Cisco wap581 Cisco wap581 Firmware
CPEs		cpe:2.3:h:cisco:wap121:-:::::::* cpe:2.3:h:cisco:wap125:-:::::::* cpe:2.3:h:cisco:wap131:-:::::::* cpe:2.3:h:cisco:wap150:-:::::::* cpe:2.3:h:cisco:wap320:-:::::::* cpe:2.3:h:cisco:wap321:-:::::::* cpe:2.3:h:cisco:wap351:-:::::::* cpe:2.3:h:cisco:wap361:-:::::::* cpe:2.3:h:cisco:wap371:-:::::::* cpe:2.3:h:cisco:wap571:-:::::::* cpe:2.3:h:cisco:wap571e:-:::::::* cpe:2.3:h:cisco:wap581:-:::::::* cpe:2.3:o:cisco:wap121_firmware:-:::::::* cpe:2.3:o:cisco:wap125_firmware:-:::::::* cpe:2.3:o:cisco:wap131_firmware:-:::::::* cpe:2.3:o:cisco:wap150_firmware:-:::::::* cpe:2.3:o:cisco:wap320_firmware:-:::::::* cpe:2.3:o:cisco:wap321_firmware:-:::::::* cpe:2.3:o:cisco:wap351_firmware:-:::::::* cpe:2.3:o:cisco:wap361_firmware:-:::::::* cpe:2.3:o:cisco:wap371_firmware:-:::::::* cpe:2.3:o:cisco:wap571_firmware:-:::::::* cpe:2.3:o:cisco:wap571e_firmware:-:::::::* cpe:2.3:o:cisco:wap581_firmware:-:::::::*
Vendors & Products		Cisco Cisco wap121 Cisco wap121 Firmware Cisco wap125 Cisco wap125 Firmware Cisco wap131 Cisco wap131 Firmware Cisco wap150 Cisco wap150 Firmware Cisco wap320 Cisco wap320 Firmware Cisco wap321 Cisco wap321 Firmware Cisco wap351 Cisco wap351 Firmware Cisco wap361 Cisco wap361 Firmware Cisco wap371 Cisco wap371 Firmware Cisco wap571 Cisco wap571 Firmware Cisco wap571e Cisco wap571e Firmware Cisco wap581 Cisco wap581 Firmware

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2024-03-06T16:31:10.729Z

Updated: 2024-08-01T21:59:41.754Z

Reserved: 2023-11-08T15:08:07.642Z

Link: CVE-2024-20336

Vulnrichment

Updated: 2024-08-01T21:59:41.754Z

NVD

Status : Analyzed

Published: 2024-03-06T17:15:09.397

Modified: 2025-08-05T14:39:11.950

Link: CVE-2024-20336

Redhat

No data.

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

Affected Vendors & Products

Metrics

Attack Vector Network

Attack Complexity Low

Privileges Required High

Scope Unchanged

Confidentiality Impact High

Integrity Impact High

Availability Impact None

User Interaction None

Affected Vendors & Products

JSON object

JSON object

JSON object

JSON object