PT-2023-12984 · Onos · Onos

Name of the Vulnerable Software and Affected Versions: ONOS version 2.5.1 Description: An issue was discovered in ONOS where an intent with the same source and destination shows the INSTALLING state, indicating that its flow rules are installing. Improper handling of such an intent is misleading ...

Open Networking Foundation ONOS 安全漏洞

Open Networking Foundation ONOS is an open source SDN controller from Open Networking Foundation open source. It is used to build next-generation SDN/NFV solutions. A security vulnerability exists in Open Networking Foundation ONOS version 2.5.1, which originates in IntentManager, where an...

Open Networking Foundation ONOS 安全漏洞

Open Networking Foundation ONOS is an open source SDN controller from Open Networking Foundation open source. It is used to build next-generation SDN/NFV solutions. A security vulnerability exists in Open Networking Foundation ONOS version 2.5.1, which stems from the fact that ONOS will modify...

Security Bulletin: Vulnerability in Enterprise Network Operating System (ENOS) affects IBM BladeCenter Switch Products (CVE-2017-3765)

Summary IBM BladeCenter Switch Products have addressed the following vulnerability in Enterprise Network Operating System ENOS. Vulnerability Details Summary IBM BladeCenter Switch Products have addressed the following vulnerability in Enterprise Network Operating System ENOS. Vulnerability Detai...

Cisco ASR 9000 Series 缓冲区错误漏洞

Cisco IOS and others are products of Cisco, Inc.Cisco IOS is a set of operating systems developed for its network devices.Cisco ASR 900 is a 900 Series Aggregation Services Router.Cisco ASR 9000 is a 9000 Series Aggregation Services Router. A security vulnerability exists in the Cisco ASR 9000...

Dell Enterprise SONiC OS has an unspecified vulnerability

Dell Enterprise SONiC OS Dell Enterprise Sonic Operating System is an open source network operating system from Dell, Inc. A remote attacker could exploit this vulnerability to cause unauthorized access to communications...

The vulnerability of the Login Enhancements (Login Block) function in Cisco IOS operating systems allows a hacker to cause a service failure.

The vulnerability of the Login Enhancements Login Block function in Cisco IOS operating systems is related to resource management errors. Exploiting this vulnerability can allow a malicious actor to cause service failures remotely...

Aruba Networks ArubaOS and Instant PAPI Protocol Buffer Overflow Vulnerability

ArubaOS is the network operating system for Aruba Mobility Controllers, Mobility Masters, and controller-managed access points APs. instantOS is an Arch Linux-based distribution. aruba networks ArubaOS and Instant PAPI The Aruba Networks ArubaOS and Instant PAPI protocols are vulnerable to a buff...

Cisco IOS XE Software 操作系统命令注入漏洞

Cisco IOS XE Software is an operating system from Cisco, Inc. Used as a single operating system for enterprise wired and wireless access, aggregation, core and WAN, Cisco IOS XE reduces business and network complexity. Cisco IOS XE Software suffers from an operating system command injection...

Cisco IOS XR 安全漏洞

Cisco IOS XR is a set of operating systems developed by the U.S.-based Cisco for its network devices. A security vulnerability exists in Cisco IOS XR that originates as a result of a heap buffer overflow in certain messages, which can be exploited by an attacker by sending a malicious packet to a...

The vulnerability of the command-line interface (CLI) of the networking operating system FXOS allows a attacker to execute arbitrary commands with root privileges.

The vulnerability of the command-line interface CLI of the networking operating system FXOS exists because measures to neutralize the special elements used in the operating system’s commands have not been taken. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands...

Vulnerabilities fixed in Cisco NX-OS and FXOS

Cisco has fixed vulnerabilities in NX-OS and FXOS for various Firepower, Nexus and UCS hardware. A malicious party could exploit the vulnerabilities to cause a Denial-of-Service, or use command-injection to execute commands on the vulnerable system with root privileges. To exploit the...

Cisco IOS XE Software缓冲区错误漏洞

Cisco IOS XE is a set of operating systems developed by Cisco for its network devices.A denial of service vulnerability exists in Cisco IOS XE AVC-FNF, which originates from packets that do not adequately validate traffic inspected by the AVC function and can be exploited by attackers to cause a...

Cisco IOS XE Software输入验证错误漏洞

Cisco IOS XE is a set of operating systems developed by Cisco for its network devices.Cisco IOS XE has an elevation of privilege vulnerability that can be exploited by attackers to execute arbitrary commands as root...

The vulnerability of the Cisco Discovery Protocol Service network operating systems and Cisco NX-OS/FXOS routers allows a attacker to induce a service failure.

The vulnerability of the Cisco Discovery Protocol Service for network operating systems based on Cisco NX-OS and FXOS routers is related to resource management errors. Exploiting this vulnerability can allow attackers to cause service failures by sending specially crafted malicious messages...

New Flaws Discovered in Cisco's Network Operating System for Switches

Cisco has released software updates to address four security vulnerabilities in its software that could be weaponized by malicious actors to take control of affected systems. The most critical of the flaws is CVE-2022-20650 CVSS score: 8.8, which relates to a command injection flaw in the NX-API...

CVE-2022-20650

A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote attacker to execute arbitrary commands with root privileges. The vulnerability is due to insufficient input validation of user supplied data that is sent to the NX-API. An attacker could exploit thi...

CVE-2022-20650

A vulnerability in the NX-API feature of Cisco NX-OS Software could allow an authenticated, remote attacker to execute arbitrary commands with root privileges. The vulnerability is due to insufficient input validation of user supplied data that is sent to the NX-API. An attacker could exploit thi...

Juniper Networks Junos OS Denial of Service Vulnerability (CNVD-2022-06682)

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. A denial of service vulnerability exists in Juniper Networks Junos OS, which could be exploited by an attacker to cause a...

Juniper Networks Junos OS 代码问题漏洞

Juniper Networks Junos OS is a Juniper Networks network operating system for the company's hardware devices. The OS provides a secure programming interface and the Junos SDK. A denial of service vulnerability exists in Juniper Networks Junos OS, which could be exploited by an attacker to cause a...