Sign-up

ID

VAR-201801-0503


CVE

CVE-2017-3765


TITLE

Lenovo Enterprise Networking Operating System Authentication vulnerability

Trust: 0.8

sources: JVNDB: JVNDB-2018-001511

DESCRIPTION

In Enterprise Networking Operating System (ENOS) in Lenovo and IBM RackSwitch and BladeCenter products, an authentication bypass known as "HP Backdoor" was discovered during a Lenovo security audit in the serial console, Telnet, SSH, and Web interfaces. This bypass mechanism can be accessed when performing local authentication under specific circumstances. If exploited, admin-level access to the switch is granted. Lenovo Enterprise Networking Operating System (ENOS) Contains an authentication vulnerability.Information is obtained, information is altered, and service operation is disrupted (DoS) There is a possibility of being put into a state. LenovoRackSwitch and BladeCenter are China's Lenovo (Lenovo) switch products. IBMRackSwitch and BladeCenter are IBM's switch products. An authentication bypass vulnerability exists in ENOS in Lenovo, IBMRackSwitch, and BladeCenter switches. An attacker can use this vulnerability to gain access to the switch management interface and leak traffic through the switch, causing denial of service. Lenovo/IBM Products are prone to a local authentication-bypass vulnerability. This may lead to further attacks

Trust: 2.43

sources: NVD: CVE-2017-3765 // JVNDB: JVNDB-2018-001511 // CNVD: CNVD-2018-04100 // BID: 102741

IOT TAXONOMY

category:['Network device']sub_category: -

Trust: 0.6

sources: CNVD: CNVD-2018-04100

AFFECTED PRODUCTS

vendor:lenovomodel:enterprise networking operating systemscope: - version: -

Trust: 1.4

vendor:lenovomodel:enterprise network operating systemscope:ltversion:8.4.6.0

Trust: 1.0

vendor:ibmmodel:bladecenter virtual fabric 10gb switchscope: - version: -

Trust: 0.6

vendor:ibmmodel:bladecenter 1/10gb uplink ethernet switchscope: - version: -

Trust: 0.6

vendor:ibmmodel:bladecenter layer gbe switchscope:eqversion:2/7

Trust: 0.6

vendor:ibmmodel:bladecenter layer gbe switchscope:eqversion:2/3

Trust: 0.6

vendor:lenovomodel:rackswitch g8332scope:eqversion:8.4.6.0

Trust: 0.3

vendor:lenovomodel:rackswitch g8296scope:eqversion:8.4.6.0

Trust: 0.3

vendor:lenovomodel:rackswitch g8272scope:eqversion:8.4.6.0

Trust: 0.3

vendor:lenovomodel:rackswitch g8264csscope:eqversion:8.4.6.0

Trust: 0.3

vendor:lenovomodel:rackswitch g8264scope:eqversion:8.4.6.0

Trust: 0.3

vendor:lenovomodel:rackswitch g8124escope:eqversion:8.4.6.0

Trust: 0.3

vendor:lenovomodel:rackswitch g8052scope:eqversion:8.4.6.0

Trust: 0.3

vendor:lenovomodel:rackswitch g7052scope:eqversion:8.4.6.0

Trust: 0.3

vendor:lenovomodel:rackswitch g7028scope:eqversion:8.4.6.0

Trust: 0.3

vendor:lenovomodel:flex system si4091 system interconnect modulescope:eqversion:8.4.6.0

Trust: 0.3

vendor:lenovomodel:flex system fabric si4093 10gb system interconnect modulescope:eqversion:8.4.6.0

Trust: 0.3

vendor:lenovomodel:flex system fabric en4093r 10gb scalable switchscope:eqversion:8.4.6.0

Trust: 0.3

vendor:lenovomodel:flex system fabric cn4093 10gb converged scalable switchscope:eqversion:8.4.6.0

Trust: 0.3

vendor:lenovomodel:enterprise networking operating systemscope:eqversion:0

Trust: 0.3

vendor:ibmmodel:rackswitch g8332scope:eqversion:7.7.27.0

Trust: 0.3

vendor:ibmmodel:rackswitch g8316scope:eqversion:7.9.21.0

Trust: 0.3

vendor:ibmmodel:rackswitch g8264tscope:eqversion:7.9.21.0

Trust: 0.3

vendor:ibmmodel:rackswitch g8264csscope:eqversion:7.8.18.0

Trust: 0.3

vendor:ibmmodel:rackswitch g8264scope:eqversion:7.11.11.0

Trust: 0.3

vendor:ibmmodel:rackswitch g8124escope:eqversion:7.11.11.0

Trust: 0.3

vendor:ibmmodel:rackswitch g8124scope:eqversion:7.11.11.0

Trust: 0.3

vendor:ibmmodel:rackswitch g8052scope:eqversion:7.11.11.0

Trust: 0.3

vendor:ibmmodel:flex system? fabricscope:eqversion:7.8.18.0

Trust: 0.3

vendor:ibmmodel:bladecenter virtual fabric 10gb switch modulescope:eqversion:7.8.14.0

Trust: 0.3

vendor:ibmmodel:bladecenter layer copper ethernet switch modulescope:eqversion:2/35.3.12.0

Trust: 0.3

vendor:ibmmodel:bladecenter 1:10g uplink ethernet switch modulescope:eqversion:7.4.18.0

Trust: 0.3

vendor:ibmmodel:1g l2-7 slb switch for bladecenterscope:eqversion:21.0.26.0

Trust: 0.3

sources: CNVD: CNVD-2018-04100 // BID: 102741 // JVNDB: JVNDB-2018-001511 // NVD: CVE-2017-3765

CVSS

SEVERITY

CVSSV2

CVSSV3

nvd@nist.gov: CVE-2017-3765
value: HIGH

Trust: 1.0

NVD: CVE-2017-3765
value: HIGH

Trust: 0.8

CNVD: CNVD-2018-04100
value: MEDIUM

Trust: 0.6

CNNVD: CNNVD-201801-369
value: MEDIUM

Trust: 0.6

nvd@nist.gov: CVE-2017-3765
severity: MEDIUM
baseScore: 6.2
vectorString: AV:L/AC:H/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 1.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 1.8

CNVD: CNVD-2018-04100
severity: MEDIUM
baseScore: 6.2
vectorString: AV:L/AC:H/AU:N/C:C/I:C/A:C
accessVector: LOCAL
accessComplexity: HIGH
authentication: NONE
confidentialityImpact: COMPLETE
integrityImpact: COMPLETE
availabilityImpact: COMPLETE
exploitabilityScore: 1.9
impactScore: 10.0
acInsufInfo: NONE
obtainAllPrivilege: NONE
obtainUserPrivilege: NONE
obtainOtherPrivilege: NONE
userInteractionRequired: NONE
version: 2.0

Trust: 0.6

nvd@nist.gov: CVE-2017-3765
baseSeverity: HIGH
baseScore: 7.0
vectorString: CVSS:3.0/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H
attackVector: LOCAL
attackComplexity: HIGH
privilegesRequired: LOW
userInteraction: NONE
scope: UNCHANGED
confidentialityImpact: HIGH
integrityImpact: HIGH
availabilityImpact: HIGH
exploitabilityScore: 1.0
impactScore: 5.9
version: 3.0

Trust: 1.8

sources: CNVD: CNVD-2018-04100 // JVNDB: JVNDB-2018-001511 // CNNVD: CNNVD-201801-369 // NVD: CVE-2017-3765

PROBLEMTYPE DATA

problemtype:CWE-287

Trust: 1.8

sources: JVNDB: JVNDB-2018-001511 // NVD: CVE-2017-3765

THREAT TYPE

local

Trust: 0.9

sources: BID: 102741 // CNNVD: CNNVD-201801-369

TYPE

authorization issue

Trust: 0.6

sources: CNNVD: CNNVD-201801-369

CONFIGURATIONS

sources:
            
            
            JVNDB: JVNDB-2018-001511

PATCH
title:LEN-16095url:https://support.lenovo.com/jp/ja/product_security/len-16095
Trust: 0.8
title:Lenovo, IBMRackSwitch, and BladeCenter switches EnterpriseNetworkingOperatingSystem authentication bypass vulnerability patchurl:https://www.cnvd.org.cn/patchInfo/show/120057
Trust: 0.6
title:Lenovo , IBM RackSwitch  and BladeCenter switch Enterprise Networking Operating System Security vulnerabilitiesurl:http://www.cnnvd.org.cn/web/xxk/bdxqById.tag?id=77630
Trust: 0.6
sources:
            
            
            CNVD: CNVD-2018-04100 // 
            
            
            
            JVNDB: JVNDB-2018-001511 // 
            
            
            
            CNNVD: CNNVD-201801-369

EXTERNAL IDS
db:NVDid:CVE-2017-3765
Trust: 3.3
db:LENOVOid:LEN-16095
Trust: 2.5
db:SECTRACKid:1040296
Trust: 1.0
db:JVNDBid:JVNDB-2018-001511
Trust: 0.8
db:CNVDid:CNVD-2018-04100
Trust: 0.6
db:NSFOCUSid:38765
Trust: 0.6
db:CNNVDid:CNNVD-201801-369
Trust: 0.6
db:BIDid:102741
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2018-04100 // 
            
            
            
            BID: 102741 // 
            
            
            
            JVNDB: JVNDB-2018-001511 // 
            
            
            
            CNNVD: CNNVD-201801-369 // 
            
            
            
            NVD: CVE-2017-3765

REFERENCES
url:https://support.lenovo.com/us/en/product_security/len-16095
Trust: 1.9
url:http://www.securitytracker.com/id/1040296
Trust: 1.0
url:https://cve.mitre.org/cgi-bin/cvename.cgi?name=cve-2017-3765
Trust: 0.8
url:https://nvd.nist.gov/vuln/detail/cve-2017-3765
Trust: 0.8
url:https://support.lenovo.com/us/zh/product_security/len-16095
Trust: 0.6
url:http://www.nsfocus.net/vulndb/38765
Trust: 0.6
url:http://www.lenovo.com/ca/en/
Trust: 0.3
sources:
            
            
            CNVD: CNVD-2018-04100 // 
            
            
            
            BID: 102741 // 
            
            
            
            JVNDB: JVNDB-2018-001511 // 
            
            
            
            CNNVD: CNNVD-201801-369 // 
            
            
            
            NVD: CVE-2017-3765

CREDITS
The vendor reported this issue.
Trust: 0.3
sources:
            
            
            BID: 102741

SOURCES
db:CNVDid:CNVD-2018-04100
db:BIDid:102741
db:JVNDBid:JVNDB-2018-001511
db:CNNVDid:CNNVD-201801-369
db:NVDid:CVE-2017-3765

LAST UPDATE DATE
2024-11-23T21:53:30.852000+00:00

SOURCES UPDATE DATE
db:CNVDid:CNVD-2018-04100date:2018-03-02T00:00:00
db:BIDid:102741date:2018-01-10T00:00:00
db:JVNDBid:JVNDB-2018-001511date:2018-02-22T00:00:00
db:CNNVDid:CNNVD-201801-369date:2018-01-11T00:00:00
db:NVDid:CVE-2017-3765date:2024-11-21T03:26:05.847

SOURCES RELEASE DATE
db:CNVDid:CNVD-2018-04100date:2018-03-02T00:00:00
db:BIDid:102741date:2018-01-10T00:00:00
db:JVNDBid:JVNDB-2018-001511date:2018-02-22T00:00:00
db:CNNVDid:CNNVD-201801-369date:2018-01-11T00:00:00
db:NVDid:CVE-2017-3765date:2018-01-10T18:29:01.383