An industry-wide vulnerability has been identified in the implementation of the Open Shortest Path First (OSPF) routing protocol used on some Lenovo switches. Exploitation of these implementation flaws may result in attackers being able to erase or alter the routing tables of one or many routers, switches, or other devices that support OSPF within a routing domain.
Vector
ADJACENT_NETWORK
Complexity
MEDIUM
Authentication
NONE
Confidentiality
NONE
Integrity
PARTIAL
Availability
PARTIAL
Lenovo G8332 firmware 8.4.3.0 (not an official CPE)
Lenovo G8124e firmware 8.4.3.0 (not an official CPE)
Lenovo G8296 firmware 8.4.3.0 (not an official CPE)
Lenovo Si4091 firmware 8.4.3.0 (not an official CPE)
Ibm G8264cs firmware 7.8.16.0 (not an official CPE)
Lenovo G8264cs firmware 8.4.3.0 (not an official CPE)
Ibm G8052 firmware 7.9.19.0 (not an official CPE)
Ibm G8332 firmware 7.7.25.0 (not an official CPE)
Lenovo G8272 firmware 8.4.3.0 (not an official CPE)
Lenovo Fabric cn4093 10gb firmware 8.4.3.0 (not an official CPE)
Ibm G8316 firmware 7.9.19.0 (not an official CPE)
Ibm G8124 firmware 7.11.9.0 (not an official CPE)
Ibm Virtual fabric 10gb 7.8.12.0 (not an official CPE)
Ibm G8264 firmware 7.9.19.0 (not an official CPE)
Ibm Fabric cn4093 10gb firmware 7.8.16.0 (not an official CPE)
Lenovo Fabric en4093r 10gb firmware 8.4.3.0 (not an official CPE)
Ibm Fabric en4093/en4093r 10gb firmware 7.8.16.0 (not an official CPE)
Lenovo G8264 firmware 8.4.3.0 (not an official CPE)
Ibm En2092 1gb firmware 7.8.16.0 (not an official CPE)
Ibm G8124e firmware 7.11.9.0 (not an official CPE)
Ibm Layer 2/3 copper firmware 5.3.10.0 (not an official CPE)
Ibm G8264t firmware 7.9.19.0 (not an official CPE)
Lenovo G8052 firmware 8.4.3.0 (not an official CPE)
Ibm 1:10g firmware 7.4.16.0 (not an official CPE)
Ibm 1g l2-7 slb 21.0.24.0 (not an official CPE)
Lenovo - G8332 firmware
Lenovo - G8124e firmware
Lenovo - G8296 firmware
Lenovo - Si4091 firmware
Ibm - G8264cs firmware
Lenovo - G8264cs firmware
Ibm - G8052 firmware
Ibm - G8332 firmware
Lenovo - G8272 firmware
Lenovo - Fabric cn4093 10gb firmware
Ibm - G8316 firmware
Ibm - G8124 firmware
Ibm - Virtual fabric 10gb
Ibm - G8264 firmware
Ibm - Fabric cn4093 10gb firmware
Lenovo - Fabric en4093r 10gb firmware
Ibm - Fabric en4093/en4093r 10gb firmware
Lenovo - G8264 firmware
Ibm - En2092 1gb firmware
Ibm - G8124e firmware
Ibm - Layer 2/3 copper firmware
Ibm - G8264t firmware
Lenovo - G8052 firmware
Ibm - 1:10g firmware
Ibm - 1g l2-7 slb
| Advisory | Patch | Confirmed | Link |
|---|---|---|---|
| https://support.lenovo.com/us/en/product_security/LEN-14... | |||
| 99995 |
Improper Input Validation (ID 20)
Related CAPEC 58
Buffer Overflow via Environment Variables (CAPEC-ID 10)
Server Side Include (SSI) Injection (CAPEC-ID 101)
Cross Zone Scripting (CAPEC-ID 104)
Cross Site Scripting through Log Files (CAPEC-ID 106)
Command Line Execution through SQL Injection (CAPEC-ID 108)
Object Relational Mapping Injection (CAPEC-ID 109)
SQL Injection through SOAP Parameter Tampering (CAPEC-ID 110)
Subverting Environment Variable Values (CAPEC-ID 13)
Format String Injection (CAPEC-ID 135)
LDAP Injection (CAPEC-ID 136)
Relative Path Traversal (CAPEC-ID 139)
Client-side Injection-induced Buffer Overflow (CAPEC-ID 14)
Variable Manipulation (CAPEC-ID 171)
Embedding Scripts in Non-Script Elements (CAPEC-ID 18)
Flash Injection (CAPEC-ID 182)
Cross-Site Scripting Using Alternate Syntax (CAPEC-ID 199)
Exploiting Trust in Client (aka Make the Client Invisible) (CAPEC-ID 22)
XML Nested Payloads (CAPEC-ID 230)
XML Oversized Payloads (CAPEC-ID 231)
Filter Failure through Buffer Overflow (CAPEC-ID 24)
Cross-Site Scripting via Encoded URI Schemes (CAPEC-ID 244)
XML Injection (CAPEC-ID 250)
Environment Variable Manipulation (CAPEC-ID 264)
Global variable manipulation (CAPEC-ID 265)
Leverage Alternate Encoding (CAPEC-ID 267)
Fuzzing (CAPEC-ID 28)
Using Leading 'Ghost' Character Sequences to Bypass Input Filters (CAPEC-ID 3)
Accessing/Intercepting/Modifying HTTP Cookies (CAPEC-ID 31)
Embedding Scripts in HTTP Query Strings (CAPEC-ID 32)
MIME Conversion (CAPEC-ID 42)
Exploiting Multiple Input Interpretation Layers (CAPEC-ID 43)
Buffer Overflow via Symbolic Links (CAPEC-ID 45)
Overflow Variables and Tags (CAPEC-ID 46)
Buffer Overflow via Parameter Expansion (CAPEC-ID 47)
Signature Spoof (CAPEC-ID 473)
XML Client-Side Attack (CAPEC-ID 484)
Embedding NULL Bytes (CAPEC-ID 52)
Postfix, Null Terminate, and Backslash (CAPEC-ID 53)
Simple Script Injection (CAPEC-ID 63)
Using Slashes and URL Encoding Combined to Bypass Validation Logic (CAPEC-ID 64)
SQL Injection (CAPEC-ID 66)
String Format Overflow in syslog() (CAPEC-ID 67)
Blind SQL Injection (CAPEC-ID 7)
Using Unicode Encoding to Bypass Validation Logic (CAPEC-ID 71)
URL Encoding (CAPEC-ID 72)
User-Controlled Filename (CAPEC-ID 73)
Using Escaped Slashes in Alternate Encoding (CAPEC-ID 78)
Using Slashes in Alternate Encoding (CAPEC-ID 79)
Buffer Overflow in an API Call (CAPEC-ID 8)
Using UTF-8 Encoding to Bypass Validation Logic (CAPEC-ID 80)
Web Logs Tampering (CAPEC-ID 81)
XPath Injection (CAPEC-ID 83)
AJAX Fingerprinting (CAPEC-ID 85)
Embedding Script (XSS) in HTTP Headers (CAPEC-ID 86)
OS Command Injection (CAPEC-ID 88)
Buffer Overflow in Local Command-Line Utilities (CAPEC-ID 9)
XSS in IMG Tags (CAPEC-ID 91)
XML Parser Attack (CAPEC-ID 99)