Design/Logic Flaw

2024-03-1217:15:00

PRIOn knowledge base

www.prio-n.com

open virtual network

dos attack

crafted bfd packets

ovn clusters

high availability

hypervisors

unprivileged workloads

7.2 High

AI Score

Confidence

Low

0.0005 Low

EPSS

Percentile

17.1%

JSON

A flaw was found in the Open Virtual Network (OVN). In OVN clusters where BFD is used between hypervisors for high availability, an attacker can inject specially crafted BFD packets from inside unprivileged workloads, including virtual machines or containers, that can trigger a denial of service.