CVE-2013-0570
MEDIUMIBM Network Operating System - Exposure of Sensitive Information via FCoE Data Frame Flooding
Title source: llmDescription
The Fibre Channel over Ethernet (FCoE) feature in IBM System Networking and Blade Network Technology (BNT) switches running IBM Networking Operating System (aka NOS, formerly BLADE Operating System) floods data frames with unknown MAC addresses out on all interfaces on the same VLAN, which might allow remote attackers to obtain sensitive information in opportunistic circumstances by eavesdropping on the broadcast domain. IBM X-Force ID: 83166.
References (2)
Core 2
Core References
VDB Entry, Vendor Advisory vdb-entry
x_refsource_xf
https://exchange.xforce.ibmcloud.com/vulnerabilities/83166
Vendor Advisory x_refsource_confirm
https://www-304.ibm.com/support/docview.wss?uid=isg3T1019715
Scores
CVSS v3
5.3
EPSS
0.0074
EPSS Percentile
50.3%
Attack Vector
ADJACENT_NETWORK
CVSS:3.0/AV:A/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Details
CWE
CWE-200
Status
published
Products (1)
ibm/network_operating_system
Published
Jul 13, 2018
Tracked Since
Feb 18, 2026