Unrated severityNVD Advisory· Published Jan 23, 2014· Updated Apr 29, 2026

CVE-2013-7312

Description

The OSPF implementation on Enterasys switches and routers does not consider the possibility of duplicate Link State ID values in Link State Advertisement (LSA) packets before performing operations on the LSA database, which allows remote attackers to cause a denial of service (routing disruption) or obtain sensitive packet information via a crafted LSA packet, a related issue to CVE-2013-0149.

Affected products

Enterasys/C5
cpe:2.3:h:enterasys:c5:-:*:*:*:*:*:*:*
Enterasys/G3
cpe:2.3:h:enterasys:g3:-:*:*:*:*:*:*:*
Enterasys/K10
cpe:2.3:h:enterasys:k10:-:*:*:*:*:*:*:*
Enterasys/K6
cpe:2.3:h:enterasys:k6:-:*:*:*:*:*:*:*
Enterasys/S130
cpe:2.3:h:enterasys:s130:-:*:*:*:*:*:*:*
Enterasys/S140
cpe:2.3:h:enterasys:s140:-:*:*:*:*:*:*:*
Enterasys/S150
cpe:2.3:h:enterasys:s150:-:*:*:*:*:*:*:*
Enterasys/S155
cpe:2.3:h:enterasys:s155:-:*:*:*:*:*:*:*
Enterasys/S180
cpe:2.3:h:enterasys:s180:-:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.kb.cert.org/vuls/id/229804nvdUS Government Resource
www.kb.cert.org/vuls/id/BLUU-985QS8nvdUS Government Resource
community.enterasys.com/enterasys/topics/ensrt_product_advisory_vu_229804_ospf_lsa_lookup_identifers-il4n3nvd
cp-enterasys.kb.net/article.aspxnvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000