8.2 - CVE-2017-3752

Executive Summary

Informations
Name	CVE-2017-3752	First vendor Publication	2017-08-09
Vendor	Cve	Last vendor Modification	2017-08-30

Security-Database Scoring CVSS v3

Cvss vector : CVSS:3.1/AV:A/AC:H/PR:N/UI:N/S:C/C:L/I:H/A:H
Overall CVSS Score	8.2
Base Score	8.2	Environmental Score	8.2
impact SubScore	6	Temporal Score	8.2
Exploitabality Sub Score	1.6

Attack Vector	Adjacent	Attack Complexity	High
Privileges Required	None	User Interaction	None
Scope	Changed	Confidentiality Impact	Low
Integrity Impact	High	Availability Impact	High
Calculate full CVSS 3.0 Vectors scores

Security-Database Scoring CVSS v2

Cvss vector : (AV:A/AC:M/Au:N/C:N/I:P/A:P)
Cvss Base Score	4.3	Attack Range	Adjacent network
Cvss Impact Score	4.9	Attack Complexity	Medium
Cvss Expoit Score	5.5	Authentication	None Required
Calculate full CVSS 2.0 Vectors scores

Detail

An industry-wide vulnerability has been identified in the implementation of the Open Shortest Path First (OSPF) routing protocol used on some Lenovo switches. Exploitation of these implementation flaws may result in attackers being able to erase or alter the routing tables of one or many routers, switches, or other devices that support OSPF within a routing domain.

Original Source

Url : http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2017-3752

CWE : Common Weakness Enumeration

%	Id	Name
100 %	CWE-20	Improper Input Validation

CPE : Common Platform Enumeration

Type	Description	Count
Os	Ibm 1G L2-7 Slb cpe:2.3:o:ibm:1g_l2-7_slb:21.0.24.0:::::::*	1
Os	Ibm En2092 1Gb Firmware cpe:2.3:o:ibm:en2092_1gb_firmware:7.8.16.0:::::::*	1
Os	Ibm Fabric Cn4093 10Gb Firmware cpe:2.3:o:ibm:fabric_cn4093_10gb_firmware:7.8.16.0:::::::*	1
Os	Ibm G8052 Firmware cpe:2.3:o:ibm:g8052_firmware:7.9.19.0:::::::*	1
Os	Ibm G8124 Firmware cpe:2.3:o:ibm:g8124_firmware:7.11.9.0:::::::*	1
Os	Ibm G8124E Firmware cpe:2.3:o:ibm:g8124e_firmware:7.11.9.0:::::::*	1
Os	Ibm G8264 Firmware cpe:2.3:o:ibm:g8264_firmware:7.9.19.0:::::::*	1
Os	Ibm G8264Cs Firmware cpe:2.3:o:ibm:g8264cs_firmware:7.8.16.0:::::::*	1
Os	Ibm G8264T Firmware cpe:2.3:o:ibm:g8264t_firmware:7.9.19.0:::::::*	1
Os	Ibm G8316 Firmware cpe:2.3:o:ibm:g8316_firmware:7.9.19.0:::::::*	1
Os	Ibm G8332 Firmware cpe:2.3:o:ibm:g8332_firmware:7.7.25.0:::::::*	1
Os	Ibm Virtual Fabric 10Gb cpe:2.3:o:ibm:virtual_fabric_10gb:7.8.12.0:::::::*	1
Os	Lenovo Fabric Cn4093 10Gb Firmware cpe:2.3:o:lenovo:fabric_cn4093_10gb_firmware:8.4.3.0:::::::*	1
Os	Lenovo Fabric En4093R 10Gb Firmware cpe:2.3:o:lenovo:fabric_en4093r_10gb_firmware:8.4.3.0:::::::*	1
Os	Lenovo G8052 Firmware cpe:2.3:o:lenovo:g8052_firmware:8.4.3.0:::::::*	1
Os	Lenovo G8124E Firmware cpe:2.3:o:lenovo:g8124e_firmware:8.4.3.0:::::::*	1
Os	Lenovo G8264 Firmware cpe:2.3:o:lenovo:g8264_firmware:8.4.3.0:::::::*	1
Os	Lenovo G8264Cs Firmware cpe:2.3:o:lenovo:g8264cs_firmware:8.4.3.0:::::::*	1
Os	Lenovo G8272 Firmware cpe:2.3:o:lenovo:g8272_firmware:8.4.3.0:::::::*	1
Os	Lenovo G8296 Firmware cpe:2.3:o:lenovo:g8296_firmware:8.4.3.0:::::::*	1
Os	Lenovo G8332 Firmware cpe:2.3:o:lenovo:g8332_firmware:8.4.3.0:::::::*	1
Os	Lenovo Si4091 Firmware cpe:2.3:o:lenovo:si4091_firmware:8.4.3.0:::::::*	1

Sources (Detail)

Source	Url
BID	http://www.securityfocus.com/bid/99995
CONFIRM	https://support.lenovo.com/us/en/product_security/LEN-14078

Alert History

If you want to see full details history, please login or register.

Date	Informations
2020-05-23 02:06:15	Multiple Updates
2020-05-23 01:00:30	Multiple Updates
2017-08-30 21:24:48	Multiple Updates
2017-08-11 09:23:20	Multiple Updates
2017-08-10 05:22:09	First insertion

Global Informations

Type	Count
CWE ID(s)	1
CPE ID(s)	22
Sources(s)	2

	Related
4.3	VU#793496
Info : listing not affected by your CVSS Env Score

Same Subject	Severity
Login to view 1 more Alert(s)

8.2 - CVE-2017-3752

Executive Summary

Security-Database Scoring CVSS v3

Security-Database Scoring CVSS v2

Detail

Original Source

CWE : Common Weakness Enumeration

CPE : Common Platform Enumeration

Sources (Detail)

Alert History

Global Informations

Open Standards

COMPANY

STANDARDS

RECENT POSTS

MENU