CVE-2017-1460Improper Input Validation in IBM I

CWE-20Improper Input Validation3 documents3 sources
Severity
7.5HIGHNVD
EPSS
0.4%
top 39.73%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
1
IBM I
Timeline
PublishedJul 31
Latest updateMay 17

Description

IBM i OSPF 6.1, 7.1, 7.2, and 7.3 is vulnerable when a rogue router spoofs its origin. Routing tables are affected by a missing LSA, which may lead to loss of connectivity. IBM X-Force ID: 128379.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:HExploitability: 3.9 | Impact: 3.6

Affected Packages2 packages

CVEListV5ibm/i4 versions+3
NVDibm/i4 versions+3

🔴Vulnerability Details

2
GHSA
GHSA-prpj-qg9j-r8qg: IBM i OSPF 62022-05-17
CVEList
CVE-2017-1460: IBM i OSPF 62017-07-31
CVE-2017-1460 — Improper Input Validation in IBM I | cvebase