Lucene search
K

5 matches found

OSV
OSV
added 2022/05/17 2:36 a.m.4 views

GHSA-QM24-4869-99PJ Opendaylight will authenticate any username and password combination

The custom authentication realm used by karaf-tomcat's "opendaylight" realm in Opendaylight before Helium SR3 will authenticate any username and password combination...

9.8CVSS7.2AI score0.02749EPSS
Exploits0References5
NVD
NVD
added 2017/06/27 8:29 p.m.19 views

CVE-2015-1778

The custom authentication realm used by karaf-tomcat's "opendaylight" realm in Opendaylight before Helium SR3 will authenticate any username and password combination...

9.8CVSS9.7AI score0.02749EPSS
Exploits0References4
Prion
Prion
added 2017/04/04 5:59 p.m.18 views

Buffer overflow

OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to the reuse of LLDP packets, aka "LLDP Relay."...

5CVSS7.2AI score0.02073EPSS
Exploits0References6
Cvelist
Cvelist
added 2017/04/04 5:0 p.m.27 views

CVE-2015-1611

OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to "fake LLDP injection."...

7.5AI score0.02073EPSS
Exploits0References6
CVE
CVE
added 2017/04/04 5:0 p.m.54 views

CVE-2015-1611

The OpenFlow plugin for OpenDaylight (before Helium SR3) is affected by LLDP spoofing via fake LLDP injections, enabling remote attackers to spoof the SDN topology and disrupt data flow. Affected component: openflowplugin in OpenDaylight; root cause: reuse/fake LLDP packets. Impact: topology spoo...

7.5CVSS7.5AI score0.02073EPSS
Exploits0References6Affected Software1
Rows per page
Query Builder