Vulnerability Details CVE-2017-3752
An industry-wide vulnerability has been identified in the implementation of the Open Shortest Path First (OSPF) routing protocol used on some Lenovo switches. Exploitation of these implementation flaws may result in attackers being able to erase or alter the routing tables of one or many routers, switches, or other devices that support OSPF within a routing domain.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 36.3%
CVSS Severity
CVSS v3 Score 8.2
CVSS v2 Score 4.3
References
Products affected by CVE-2017-3752
-
cpe:2.3:h:ibm:bladecenter:-
-
cpe:2.3:h:ibm:flex_system:-
-
cpe:2.3:h:ibm:rackswitch:-
-
cpe:2.3:h:lenovo:flex_system:-
-
cpe:2.3:h:lenovo:rackswitch:-
-
cpe:2.3:o:ibm:1:10g_firmware
-
cpe:2.3:o:ibm:1g_l2-7_slb:21.0.24.0
-
cpe:2.3:o:ibm:en2092_1gb_firmware:7.8.16.0
-
cpe:2.3:o:ibm:fabric_cn4093_10gb_firmware:7.8.16.0
-
cpe:2.3:o:ibm:fabric_en4093/en4093r_10gb_firmware:7.8.16.0
-
cpe:2.3:o:ibm:g8052_firmware:7.9.19.0
-
cpe:2.3:o:ibm:g8124_firmware:7.11.9.0
-
cpe:2.3:o:ibm:g8124e_firmware:7.11.9.0
-
cpe:2.3:o:ibm:g8264_firmware:7.9.19.0
-
cpe:2.3:o:ibm:g8264cs_firmware:7.8.16.0
-
cpe:2.3:o:ibm:g8264t_firmware:7.9.19.0
-
cpe:2.3:o:ibm:g8316_firmware:7.9.19.0
-
cpe:2.3:o:ibm:g8332_firmware:7.7.25.0
-
cpe:2.3:o:ibm:layer_2/3_copper_firmware:5.3.10.0
-
cpe:2.3:o:ibm:virtual_fabric_10gb:7.8.12.0
-
cpe:2.3:o:lenovo:fabric_cn4093_10gb_firmware:8.4.3.0
-
cpe:2.3:o:lenovo:fabric_en4093r_10gb_firmware:8.4.3.0
-
cpe:2.3:o:lenovo:g8052_firmware:8.4.3.0
-
cpe:2.3:o:lenovo:g8124e_firmware:8.4.3.0
-
cpe:2.3:o:lenovo:g8264_firmware:8.4.3.0
-
cpe:2.3:o:lenovo:g8264cs_firmware:8.4.3.0
-
cpe:2.3:o:lenovo:g8272_firmware:8.4.3.0
-
cpe:2.3:o:lenovo:g8296_firmware:8.4.3.0
-
cpe:2.3:o:lenovo:g8332_firmware:8.4.3.0
-
cpe:2.3:o:lenovo:si4091_firmware:8.4.3.0