6.8

CVE-2013-7314

EPSS 2.14%
Published 23.01.2014 17:55:05
Last modified 11.04.2025 00:51:21
Source cve@mitre.org
Teams watchlist Login
Open Login

The OSPF implementation on NEC IP38X, IX1000, IX2000, and IX3000 routers does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149.

Affected products Warnungen 0 Metrics 2 CWE 0 References 7

Data is provided by the National Vulnerability Database (NVD)

Nec ≫ Ip38x 1000 Version-

Nec ≫ Ip38x 105 Version-

Nec ≫ Ip38x 107e Version-

Nec ≫ Ip38x 1100 Version-

Nec ≫ Ip38x 1200 Version-

Nec ≫ Ip38x 140 Version-

Nec ≫ Ip38x 1500 Version-

Nec ≫ Ip38x 2000 Version-

Nec ≫ Ip38x 250i Version-

Nec ≫ Ip38x 300 Version-

Nec ≫ Ip38x 3000 Version-

Nec ≫ Ip38x 810 Version-

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	2.14%	0.836

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.8	8.6	6.4	AV:N/AC:M/Au:N/C:P/I:P/A:P

http://www.kb.cert.org/vuls/id/229804

US Government Resource

http://jpn.nec.com/security-info/secinfo/nv13-006.html

Vendor Advisory

http://jpn.nec.com/univerge/ix/Support/CERT/VU229804.html

Vendor Advisory

http://www.kb.cert.org/vuls/id/BLUU-985QUQ

US Government Resource

https://nvd.nist.gov/vuln/detail/CVE-2013-7314

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2013-7314

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2013-7314

EUVD