Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2013-4806
HistoryAug 12, 2013 - 10:58 a.m.

CVE-2013-4806

2013-08-1210:58:49
[email protected]
web.nvd.nist.gov
3

7 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:P/I:N/A:C

6 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.4%

JSON

The OSPF implementation on HP JD9##A routers; HP J4###A, J484#B, J8###A, JD3##A, JE###A, and JF55#A switches; HP 3COM routers and switches; and HP H3C routers and switches does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote authenticated users to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149.

Affected configurations

NVD
Node
hp3com_routerMatch3012
OR
hp3com_routerMatch3018
OR
hp3com_routerMatch5012
OR
hp3com_routerMatch5232
OR
hp3com_routerMatch5642
OR
hp3com_routerMatch5642_taa
OR
hp3com_routerMatch5682
OR
hp5500-24g-4sfp_hi_switch_with_2_interface_slotsMatchjg311a
OR
hp5500-24g-poe_ei_switchMatchjd378a
OR
hp5500-24g-poe_si_switchMatchjd371a
OR
hp5500-24g-sfp_dc_ei_switchMatchjd379a
OR
hp5500-24g-sfp_ei_switchMatchjd374a
OR
hp5500-24g_dc_ei_switchMatchjd373a
OR
hp5500-24g_ei_switchMatchjd377a
OR
hp5500-24g_si_switchMatchjd369a
OR
hp5500-48g-poe_ei_switchMatchjd376a
OR
hp5500-48g-poe_si_switchMatchjd372a
OR
hp5500-48g_ei_switchMatchjd375a
OR
hp5500-48g_si_switchMatchjd370a
OR
hp5500g-24_ei_10\/100\/1000_no_power_supply_unit_switchMatchjf551a
OR
hp5500g-24_ei_sfp_no_power_supply_unit_switchMatchjf553a
OR
hp5500g-48_ei_10\/100\/1000_no_power_supply_unit_switchMatchjf552a
OR
hph3c_ethernet_switchMatchs5600-26c
OR
hph3c_ethernet_switchMatchs5600-26c-pwr
OR
hph3c_ethernet_switchMatchs5600-26f
OR
hph3c_ethernet_switchMatchs5600-50c
OR
hph3c_ethernet_switchMatchs5600-50c-pwr

Related

cvelist 12
prion 12
cve 12
nessus 9
ibm 2
nvd 11
openvas 3
checkpoint_advisories 1
cert 1
cisco 1
securityvulns 4
debiancve 1
checkpoint_security 1
oracle 1
cvelist
cvelist
CVE-2013-4806
2013-08-12 10:00:00
CVE-2013-0149
2013-08-03 01:00:00
CVE-2013-7306
2022-10-03 16:14:52
prion
prion
Information disclosure
2013-08-12 10:58:00
Design/Logic Flaw
2013-08-05 13:22:00
Design/Logic Flaw
2014-01-02 14:59:00
cve
cve
CVE-2013-4806
2013-08-12 10:58:49
CVE-2013-0149
2013-08-05 13:22:47
CVE-2013-5385
2014-01-02 14:59:03
nessus
nessus
OSPF LSA Manipulation Vulnerability in Cisco IOS XE (cisco-sa-20130801-lsaospf)
2013-08-16 00:00:00
OSPF LSA Manipulation Vulnerability in Cisco ASA (cisco-sa-20130801-lsaospf)
2013-08-16 00:00:00
OSPF LSA Manipulation Vulnerability in Cisco NX-OS (cisco-sa-20130801-lsaospf)
2013-08-16 00:00:00
ibm
ibm
Security Bulletin: IBM PureData System For Operational Analytics A1791 is affected by an OSPF vulnerability (CVE-2013-0149)
2022-09-25 23:13:40
Security Bulletin: Vulnerability in OSPFv2 Routing Protocol Used in IBM i Operating System (CVE-2013-0149 and CVE-2013-5385)
2019-12-18 14:26:38
nvd
nvd
CVE-2013-0149
2013-08-05 13:22:47
CVE-2013-7307
2014-01-23 17:55:05
CVE-2013-7309
2014-01-23 17:55:05
openvas
openvas
Juniper Networks Junos OS OSPF Protocol Vulnerability
2013-11-29 00:00:00
SUSE: Security Advisory (SUSE-SU-2013:1470-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2014:0879-1)
2021-06-09 00:00:00
checkpoint_advisories
checkpoint_advisories
Cisco OSPF LSA Manipulation Denial of Service (CVE-2013-0149)
2013-08-13 00:00:00
cert
cert
Open Shortest Path First (OSPF) Protocol does not specify unique LSA lookup identifiers
2013-08-02 00:00:00
cisco
cisco
OSPF LSA Manipulation Vulnerability in Multiple Cisco Products
2013-08-01 16:00:00
securityvulns
securityvulns
Cisco IOS / ASA / FWSM / NX-OS / StarOS OSPF protocol vulnerability
2013-08-12 00:00:00
[security bulletin] HPSBHF02912 rev.1 - HP Networking Products including H3C and 3COM Routers and Switches, OSPF Remote Information Disclosure and Denial of Service
2013-08-12 00:00:00
HP / 3COM / H3C switches security vulnerabilities
2013-08-12 00:00:00
debiancve
debiancve
CVE-2013-0149
2013-08-05 13:22:47
checkpoint_security
checkpoint_security
Check Point response to OSPF LSA spoofing vulnerability (CVE-2013-0149, CVE-2013-7311)
2013-08-20 21:00:00
oracle
oracle
Oracle Critical Patch Update - October 2013
2013-10-15 00:00:00

7 High

CVSS2

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

COMPLETE

AV:N/AC:M/Au:S/C:P/I:N/A:C

6 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

72.4%

JSON
Related for NVD:CVE-2013-4806
cvelist12prion12cve12nessus9ibm2nvd11openvas3checkpoint_advisories1cert1cisco1securityvulns4debiancve1checkpoint_security1oracle1