CVSS 3.1 Score 4.7 of 10 (medium)


Published Sep 27, 2023
Updated: Jan 25, 2024
CWE ID 400


CVE-2023-20268 is a vulnerability in the packet processing functionality of Cisco access point (AP) software. It affects various products, including QtqzGr, QtqzGq, and fa7QL_. The vulnerability allows an unauthenticated, adjacent attacker to exhaust resources on an affected device by sending specific wireless packets. This could lead to the disruption of the Control and Provisioning of Wireless Access Points (CAPWAP) tunnel and intermittent loss of wireless client traffic. The risk score for this vulnerability is 25. Cisco has not provided any remediation information or details about the potential danger it poses to organizations.

Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-20268 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options