CVSS: 7.1EPSS: 0%CPEs: 2EXPL: 0CVE-2017-4920
https://notcve.org/view.php?id=CVE-2017-4920
The implementation of the OSPF protocol in VMware NSX-V Edge 6.2.x prior to 6.2.8 and NSX-V Edge 6.3.x prior to 6.3.3 doesn't correctly handle the link-state advertisement (LSA). A rogue LSA may exploit this issue resulting in continuous sending of LSAs between two routers eventually going in loop or loss of connectivity. La implementación del protocolo OSPF en VMware NSX-V Edge en versiones 6.2.x anteriores a la 6.2.8 y NSX-V Edge en versiones 6.3.x anteriores a la 6.3.3 no gestiona correctamente el LSA (link-state advertisement). Un LSA no autorizado podría explotar este problema, resultando en el envío continuo de LSA entre dos routers, lo que acabaría por provocar un bucle o la pérdida de la conectividad. • http://www.securityfocus.com/bid/100277 https://www.vmware.com/security/advisories/VMSA-2017-0014.html • CWE-400: Uncontrolled Resource Consumption •