NoviFlow NoviWare and NoviSwitch Device Remote Code Execution Vulnerability

NoviFlow NoviWare and NoviSwitch devices are both products of NoviFlow Canada.NoviSwitch devices are a series of switching devices.NoviWare is the switching software used in... A security vulnerability exists in the network interface of noviprocessmanagerdaemon in NoviFlow NoviWare NW400.2.6 and...

Stack overflow

A network interface of the noviprocessmanagerdaemon service, included in the NoviWare software distribution through NW400.2.6 and deployed on NoviSwitch devices, can be inadvertently exposed if an operator attempts to modify ACLs, because of a bug when ACL modifications are applied. This could be...

CVE-2017-12786

Network interfaces of the cliengine and noviengine services, included in the NoviWare software distribution through NW400.2.6 and deployed on NoviSwitch devices, can be inadvertently exposed if an operator attempts to modify ACLs, because of a bug when ACL modifications are applied. This could be...

CVE-2017-12785

The CVE-2017-12785 issue affects NoviFlow NoviWare NW400.2.6 and earlier on NoviSwitch devices. A vulnerability in the novish command-line interface allows a buffer overflow in the show log cli command, enabling a read-only (monitor) user to inject commands and gain privileged (root) code executi...

NoviFlow NoviWare NW400.2.6 Code Execution

NoviFlow NoviWare = NW400.2.6 multiple vulnerabilities Introduction ========== NoviWare is a high-performance OpenFlow 1.3, 1.4 and 1.5 compliant switch software developed by NoviFlow and available for license to network equipment manufacturers. Multiple vulnerabilities were identified in the...