Lucene search
+L

232 matches found

github
github
added 2022/05/13 1:41 a.m.24 views

OpenDaylight NULL Pointer Dereference

StreamCorruptedException and NullPointerException in OpenDaylight odl-mdsal-xsql. Controller launches exceptions in the console. Component: OpenDaylight odl-mdsal-xsql is vulnerable to this flaw. Version: The tested versions are OpenDaylight 3.3 and 4.0...

5.3CVSS6.8AI score0.01311EPSS
Exploits1References3Affected Software1
osv
osv
added 2022/05/13 1:41 a.m.16 views

GHSA-GJQ3-997P-HG6F OpenDaylight NULL Pointer Dereference

StreamCorruptedException and NullPointerException in OpenDaylight odl-mdsal-xsql. Controller launches exceptions in the console. Component: OpenDaylight odl-mdsal-xsql is vulnerable to this flaw. Version: The tested versions are OpenDaylight 3.3 and 4.0...

5.3CVSS5.2AI score0.01311EPSS
Exploits1References2
github
github
added 2022/05/13 1:41 a.m.23 views

OpenDaylight Controller DoS

DOMRpcImplementationNotAvailableException when sending Port-Status packets to OpenDaylight. Controller launches exceptions and consumes more CPU resources. Component: OpenDaylight is vulnerable to this flaw. Version: The tested versions are OpenDaylight 3.3 and 4.0...

7.5CVSS6.9AI score0.01402EPSS
Exploits1References3Affected Software1
veracode
veracode
added 2019/01/15 9:23 a.m.25 views

Insecure Default Configuration

tripleoheattemplates is vulnerable to insecure default configuration. The vulnerabilty exists due to the default configuration set for the OpenDayLight ODL admin users' credentials, allowing malicious users to gain unauthorized access...

8.8CVSS8.7AI score0.0087EPSS
Exploits0References14Affected Software4
redhat
redhat
added 2018/08/29 4:20 p.m.65 views

Moderate: Red Hat Security Advisory: opendaylight security and bug fix update

An update for OpenDaylight is now available for Red Hat OpenStack Platform 13.0 Queens. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each...

5.9CVSS6.8AI score0.05119EPSS
Exploits0References13
cnvd
cnvd
added 2018/08/01 12:0 a.m.4 views

openstack-tripleo-heat-templates hard-coded credentials vulnerability

openstack-tripleo-heat-templates is a template for deploying the OpenStack platform. A security vulnerability exists in versions prior to openstack-tripleo-heat-templates 8.0.2-40, where Opendaylight in RHOSP13 is configured with default credentials that can be easily guessed when deploying with...

8.8CVSS8.6AI score0.0087EPSS
Exploits0References1
veracode
veracode
added 2018/07/31 2:6 a.m.19 views

Insecure Default Configuration

tripleoheattemplates is vulnerable to insecure default configuration. The vulnerabilty exists due to the default configuration set for the OpenDayLight ODL admin users' credentials, allowing malicious users to gain unauthorized access...

8.8CVSS8.7AI score0.0087EPSS
Exploits0References3Affected Software1
pypa
pypa
added 2018/07/30 5:29 p.m.8 views

PYSEC-2018-102

A vulnerability was found in openstack-tripleo-heat-templates before version 8.0.2-40. When deployed using Director using default configuration, Opendaylight in RHOSP13 is configured with easily guessable default credentials...

8.8CVSS6.8AI score0.0087EPSS
Exploits0References2Affected Software1
nvd
nvd
added 2018/07/30 5:29 p.m.32 views

CVE-2018-10898

A vulnerability was found in openstack-tripleo-heat-templates before version 8.0.2-40. When deployed using Director using default configuration, Opendaylight in RHOSP13 is configured with easily guessable default credentials...

8.8CVSS8.7AI score0.0087EPSS
Exploits0References2
osv
osv
added 2018/07/30 5:29 p.m.6 views

CVE-2018-10898

A vulnerability was found in openstack-tripleo-heat-templates before version 8.0.2-40. When deployed using Director using default configuration, Opendaylight in RHOSP13 is configured with easily guessable default credentials...

8.8CVSS5.7AI score0.0087EPSS
Exploits0References2
prion
prion
added 2018/07/30 5:29 p.m.26 views

Default credentials

A vulnerability was found in openstack-tripleo-heat-templates before version 8.0.2-40. When deployed using Director using default configuration, Opendaylight in RHOSP13 is configured with easily guessable default credentials...

5.8CVSS8.6AI score0.0087EPSS
Exploits0References2Affected Software2
ubuntucve
ubuntucve
added 2018/07/30 5:29 p.m.32 views

CVE-2018-10898

A vulnerability was found in openstack-tripleo-heat-templates before version 8.0.2-40. When deployed using Director using default configuration, Opendaylight in RHOSP13 is configured with easily guessable default credentials...

8.8CVSS7.1AI score0.0087EPSS
Exploits0References1
osv
osv
added 2018/07/30 5:29 p.m.5 views

UBUNTU-CVE-2018-10898

A vulnerability was found in openstack-tripleo-heat-templates before version 8.0.2-40. When deployed using Director using default configuration, Opendaylight in RHOSP13 is configured with easily guessable default credentials...

8.8CVSS7.2AI score0.0087EPSS
Exploits0References2
osv
osv
added 2018/07/30 5:29 p.m.34 views

PYSEC-2018-102

A vulnerability was found in openstack-tripleo-heat-templates before version 8.0.2-40. When deployed using Director using default configuration, Opendaylight in RHOSP13 is configured with easily guessable default credentials...

8.8CVSS2.6AI score0.0087EPSS
Exploits0References2
cvelist
cvelist
added 2018/07/30 4:0 p.m.31 views

CVE-2018-10898

A vulnerability was found in openstack-tripleo-heat-templates before version 8.0.2-40. When deployed using Director using default configuration, Opendaylight in RHOSP13 is configured with easily guessable default credentials...

8.8CVSS8.7AI score0.0087EPSS
Exploits0References2
redhat
redhat
added 2018/07/19 2:27 p.m.6 views

openstack-tripleo-heat-templates: Default ODL deployment uses hard coded administrative credentials

When deployed using Director using default configuration, Opendaylight in RHOSP13 is configured with easily guessable default credentials...

8.8CVSS5.8AI score0.0087EPSS
Exploits0References4
redhatcve
redhatcve
added 2018/07/12 5:48 a.m.29 views

CVE-2018-10898

When deployed using Director using default configuration, Opendaylight in RHOSP13 is configured with easily guessable default credentials...

8.8CVSS1.8AI score0.0087EPSS
Exploits0References2
prion
prion
added 2018/06/20 1:29 p.m.15 views

Design/Logic Flaw

A flaw was found in Opendaylight's SDNInterfaceapp SDNI. Attackers can SQL inject the component's database SQLite without authenticating to the controller or SDNInterfaceapp. SDNInterface has been deprecated in OpenDayLight since it was last used in the final Carbon series release. In addition to...

7.5CVSS9.5AI score0.02853EPSS
Exploits4References4Affected Software1
nvd
nvd
added 2018/06/20 1:29 p.m.28 views

CVE-2018-1132

A flaw was found in Opendaylight's SDNInterfaceapp SDNI. Attackers can SQL inject the component's database SQLite without authenticating to the controller or SDNInterfaceapp. SDNInterface has been deprecated in OpenDayLight since it was last used in the final Carbon series release. In addition to...

9.8CVSS8.2AI score0.02853EPSS
Exploits4References4
cve
cve
added 2018/06/20 1:0 p.m.80 views

CVE-2018-1132

OpenDaylight CVE-2018-1132 affects the SDNInterfaceapp (SDNI) component. The flaw allows unauthenticated attackers to SQL-inject the SDNI SQLite database via the SDNInterface code path that builds insert queries, specifically in the SDNI database handling. The vulnerability arises from portName c...

9.8CVSS9.6AI score0.02853EPSS
Exploits4References4Affected Software1
Rows per page
Query Builder