Wi-Fi Access Points from [Company Name] Vulnerable to Denial-of-Service Attacks

CVECVE-2023-45624
CVSScvssV3_1: 7.5
SourceCVE-2023-45624

An unauthenticated denial-of-service (DoS) vulnerability has been discovered in Wi-Fi access points that use the PAPI protocol for configuration and management. Attackers can exploit this vulnerability without any authentication required to interrupt the normal functioning of affected access points.

The vulnerability exists in the soft ap daemon that handles PAPI requests. By sending specially crafted requests, attackers can cause the daemon to stop responding, effectively taking the access point offline. This will deny wireless connectivity to all users and devices connected to that access point.

If exploited at scale across multiple access points, this could severely disrupt network operations for businesses and organizations. Attackers do not need valid credentials to trigger a DoS – just the ability to send packets to the access point over the network.

Administrators are advised to apply any updates or patches released by the vendor to address this vulnerability as soon as possible. Enabling authentication on PAPI and restricting requests to trusted IP addresses can also help mitigate the risk. Users should check with their access point manufacturer or IT team to ensure all devices have the latest security fixes installed.

References