OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to "fake LLDP injection."
oryginał ENCVSS Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:NOpendaylight Openflow
APPOpendaylightwszystkie wersje
🔵
ZWERYFIKUJ U PRODUCENTA
Brak jednoznacznych danych o patchu. Sprawdź referencje od producenta.
CWE
Referencje
Powiązane podatności
CVE-2018-1078CRITICAL9.8ten sam produkt
OpenDayLight version Carbon SR3 and earlier contain a vulnerability during node reconciliation that can result...
CVE-2017-1000411HIGH7.5ten sam produkt
OpenFlow Plugin and OpenDayLight Controller versions Nitrogen, Carbon, Boron, Robert Varga, Anil Vishnoi conta...
CVE-2015-1612HIGH7.5ten sam produkt
OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affec...
CVE-2015-1778CRITICAL9.8ten sam vendor
The custom authentication realm used by karaf-tomcat's "opendaylight" realm in Opendaylight before Helium SR3 ...
CVE-2024-46943HIGH7.5ten sam vendor
An issue was discovered in OpenDaylight Authentication, Authorization and Accounting (AAA) through 0.19.3. A r...