CVE-2020-8349

Severity Score

9.8

*CVSS v3.1

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

An internal security review has identified an unauthenticated remote code execution vulnerability in Cloud Networking Operating System (CNOS)’ optional REST API management interface. This interface is disabled by default and not vulnerable unless enabled. When enabled, it is only vulnerable where attached to a VRF and as allowed by defined ACLs. Lenovo strongly recommends upgrading to a non-vulnerable CNOS release. Where not possible, Lenovo recommends disabling the REST API management interface or restricting access to the management VRF and further limiting access to authorized management stations via ACL.

Una revisión de seguridad interna identificó una vulnerabilidad de ejecución de código remota no autenticada en la interfaz de administración de la API REST opcional de Cloud Networking Operating System (CNOS)’. Esta interfaz está deshabilitada por defecto y no es vulnerable a menos que esté habilitada. Cuando está habilitada, solo es vulnerable cuando está conectado a un VRF y según lo permitan las ACL definidas. Lenovo recomienda encarecidamente actualizar a una versión CNOS no vulnerable. Cuando no sea posible, Lenovo recomienda deshabilitar la interfaz de administración de la API REST o restringir el acceso al VRF de administración y limitar aún más el acceso a las estaciones de administración autorizadas mediante ACL

*Credits: N/A

Attack Vector

Network

Attack Complexity

Low

Privileges Required

None

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

Attack Vector

Network

Attack Complexity

Medium

Authentication

None

Confidentiality

Partial

Integrity

Partial

Availability

Partial

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2020-01-28 CVE Reserved
2020-10-14 CVE Published
2024-08-03 EPSS Updated
2024-08-04 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-20: Improper Input Validation
CWE-94: Improper Control of Generation of Code ('Code Injection')

CAPEC

References (1)

URL	Tag	Source

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://support.lenovo.com/us/en/product_security/LEN-44423	2020-10-29

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Lenovo Search vendor "Lenovo"	Cloud Networking Operating System Search vendor "Lenovo" for product "Cloud Networking Operating System"	< 10.10.6.0 Search vendor "Lenovo" for product "Cloud Networking Operating System" and version " < 10.10.6.0"	-	Affected	in	Lenovo Search vendor "Lenovo"	Rackswitch G8272 Search vendor "Lenovo" for product "Rackswitch G8272"	-	-	Safe
Lenovo Search vendor "Lenovo"	Cloud Networking Operating System Search vendor "Lenovo" for product "Cloud Networking Operating System"	< 10.10.6.0 Search vendor "Lenovo" for product "Cloud Networking Operating System" and version " < 10.10.6.0"	-	Affected	in	Lenovo Search vendor "Lenovo"	Rackswitch G8296 Search vendor "Lenovo" for product "Rackswitch G8296"	-	-	Safe
Lenovo Search vendor "Lenovo"	Cloud Networking Operating System Search vendor "Lenovo" for product "Cloud Networking Operating System"	< 10.10.6.0 Search vendor "Lenovo" for product "Cloud Networking Operating System" and version " < 10.10.6.0"	-	Affected	in	Lenovo Search vendor "Lenovo"	Rackswitch G8332 Search vendor "Lenovo" for product "Rackswitch G8332"	-	-	Safe
Lenovo Search vendor "Lenovo"	Cloud Networking Operating System Search vendor "Lenovo" for product "Cloud Networking Operating System"	< 10.10.6.0 Search vendor "Lenovo" for product "Cloud Networking Operating System" and version " < 10.10.6.0"	-	Affected	in	Lenovo Search vendor "Lenovo"	Rackswitch Ne0152t Search vendor "Lenovo" for product "Rackswitch Ne0152t"	-	-	Safe
Lenovo Search vendor "Lenovo"	Cloud Networking Operating System Search vendor "Lenovo" for product "Cloud Networking Operating System"	< 10.10.6.0 Search vendor "Lenovo" for product "Cloud Networking Operating System" and version " < 10.10.6.0"	-	Affected	in	Lenovo Search vendor "Lenovo"	Rackswitch Ne10032 Search vendor "Lenovo" for product "Rackswitch Ne10032"	-	-	Safe
Lenovo Search vendor "Lenovo"	Cloud Networking Operating System Search vendor "Lenovo" for product "Cloud Networking Operating System"	< 10.10.6.0 Search vendor "Lenovo" for product "Cloud Networking Operating System" and version " < 10.10.6.0"	-	Affected	in	Lenovo Search vendor "Lenovo"	Rackswitch Ne1032 Search vendor "Lenovo" for product "Rackswitch Ne1032"	-	-	Safe
Lenovo Search vendor "Lenovo"	Cloud Networking Operating System Search vendor "Lenovo" for product "Cloud Networking Operating System"	< 10.10.6.0 Search vendor "Lenovo" for product "Cloud Networking Operating System" and version " < 10.10.6.0"	-	Affected	in	Lenovo Search vendor "Lenovo"	Rackswitch Ne1032t Search vendor "Lenovo" for product "Rackswitch Ne1032t"	-	-	Safe
Lenovo Search vendor "Lenovo"	Cloud Networking Operating System Search vendor "Lenovo" for product "Cloud Networking Operating System"	< 10.10.6.0 Search vendor "Lenovo" for product "Cloud Networking Operating System" and version " < 10.10.6.0"	-	Affected	in	Lenovo Search vendor "Lenovo"	Rackswitch Ne1072t Search vendor "Lenovo" for product "Rackswitch Ne1072t"	-	-	Safe
Lenovo Search vendor "Lenovo"	Cloud Networking Operating System Search vendor "Lenovo" for product "Cloud Networking Operating System"	< 10.10.6.0 Search vendor "Lenovo" for product "Cloud Networking Operating System" and version " < 10.10.6.0"	-	Affected	in	Lenovo Search vendor "Lenovo"	Rackswitch Ne2572 Search vendor "Lenovo" for product "Rackswitch Ne2572"	-	-	Safe