CVE-2015-1778

2017-06-2720:00:00

redhat

www.cve.org

9.8 High

AI Score

Confidence

High

0.005 Low

EPSS

Percentile

76.4%

JSON

The custom authentication realm used by karaf-tomcat’s “opendaylight” realm in Opendaylight before Helium SR3 will authenticate any username and password combination.

References

www.openwall.com/lists/oss-security/2015/03/20/3

www.securityfocus.com/bid/73255

cloudrouter.org/security/

wiki.opendaylight.org/view/Security_Advisories