103 matches found
Design/Logic Flaw
A vulnerability in version 0.90 of the Open Floodlight SDN controller software could result in a denial of service attack and crashing of the controller service. This effect is the result of a flaw in OpenFlow protocol processing, where specific malformed and mistimed FEATURESREPLY messages cause...
CVE-2013-7333
A vulnerability in version 0.90 of the Open Floodlight SDN controller software could allow an attacker with access to the OpenFlow control network to selectively disconnect individual switches from the SDN controller, causing degradation and eventually denial of network access to all devices...
Design/Logic Flaw
A vulnerability in version 0.90 of the Open Floodlight SDN controller software could allow an attacker with access to the OpenFlow control network to selectively disconnect individual switches from the SDN controller, causing degradation and eventually denial of network access to all devices...
CVE-2014-2304
The connected records identify CVE-2014-2304 as affecting Open Floodlight SDN controller version 0.90. The root cause is a flaw in OpenFlow protocol processing where malformed and mistimed FEATURES_REPLY messages cause the controller to fail to delete switch and port data from internal tracking s...
CVE-2014-2304
A vulnerability in version 0.90 of the Open Floodlight SDN controller software could result in a denial of service attack and crashing of the controller service. This effect is the result of a flaw in OpenFlow protocol processing, where specific malformed and mistimed FEATURESREPLY messages cause...
CVE-2013-7333
A vulnerability in version 0.90 of the Open Floodlight SDN controller software could allow an attacker with access to the OpenFlow control network to selectively disconnect individual switches from the SDN controller, causing degradation and eventually denial of network access to all devices...
CVE-2013-7333
Open Floodlight SDN controller version 0.90 is affected by CVE-2013-7333. The vulnerability allows an attacker with access to the OpenFlow control network to selectively disconnect individual switches from the controller, leading to degradation and eventual denial of network access for devices co...
Input validation
Atlassian Floodlight Atlassian Floodlight Controller version 1.2 and earlier versions contains a Denial of Service vulnerability in Forwarding module that can result in Improper type cast in Forwarding module allows remote attackers to cause a DoSthread crash.. This attack appear to be exploitabl...
CVE-2018-1000617
Atlassian Floodlight Atlassian Floodlight Controller version 1.2 and earlier versions contains a Denial of Service vulnerability in Forwarding module that can result in Improper type cast in Forwarding module allows remote attackers to cause a DoSthread crash.. This attack appear to be exploitabl...
CVE-2018-1000617
Atlassian Floodlight Atlassian Floodlight Controller version 1.2 and earlier versions contains a Denial of Service vulnerability in Forwarding module that can result in Improper type cast in Forwarding module allows remote attackers to cause a DoSthread crash.. This attack appear to be exploitabl...
CVE-2018-1000617
Atlassian Floodlight Atlassian Floodlight Controller version 1.2 and earlier versions contains a Denial of Service vulnerability in Forwarding module that can result in Improper type cast in Forwarding module allows remote attackers to cause a DoSthread crash.. This attack appear to be exploitabl...
CVE-2018-1000617
Atlassian Floodlight Controller versions 1.2 and earlier are affected by a Denial of Service in the Forwarding module due to an improper type cast. This remote, network-exploitable issue can cause thread crashes. The provided documents do not specify a remediation version or patch details.
CVE-2018-1000163
Floodlight version 1.2 and earlier contains a Cross Site Scripting XSS vulnerability in the web console that can result in javascript injections into the web page. This attack appears to be exploitable via the victim browsing the web console...
CVE-2018-1000163
Floodlight version 1.2 and earlier contains a Cross Site Scripting XSS vulnerability in the web console that can result in javascript injections into the web page. This attack appears to be exploitable via the victim browsing the web console...
Cross site scripting
Floodlight version 1.2 and earlier contains a Cross Site Scripting XSS vulnerability in the web console that can result in javascript injections into the web page. This attack appears to be exploitable via the victim browsing the web console...
CVE-2018-1000163
Floodlight web console contains a Cross Site Scripting (XSS) flaw in version 1.2 and earlier. The vulnerability allows JavaScript injections when a victim browses the web console. Connected sources corroborate the XSS description but do not provide concrete exploit details, affected file paths, o...
CVE-2018-1000163
Floodlight version 1.2 and earlier contains a Cross Site Scripting XSS vulnerability in the web console that can result in javascript injections into the web page. This attack appears to be exploitable via the victim browsing the web console...
Atlassian Floodlight Controller LoadBalancer Module Denial of Service Vulnerability
Atlassian Floodlight Controller is a Floodlight Controller product from Atlassian Australia.LoadBalancer module is one of the load balancing modules. A contention condition vulnerability exists in the LoadBalancer module in Atlassian Floodlight Controller versions prior to 1.2. A remote attacker...
Race condition
Race condition in the LoadBalancer module in the Atlassian Floodlight Controller before 1.2 allows remote attackers to cause a denial of service NULL pointer dereference and thread crash via a state manipulation attack...
CVE-2015-6569
The vulnerability CVE-2015-6569 affects Atlassian Floodlight Controller’s LoadBalancer module. The issue is a race condition in the LoadBalancer component present in Floodlight Controller versions before 1.2, which can be triggered remotely by an attacker via standard network interaction to cause...