Lucene search
K

12 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-54610

Malicious code in bioql PyPI...

5.6CVSS6.5AI score0.00242EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2025-8020

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00345EPSS
Exploits0References2
CVE
CVE
added 2025/05/29 12:0 a.m.73 views

CVE-2023-41591

CVE-2023-41591 affects Open Network Foundation ONOS v2.7.0. The issue allows an attacker to create fake IP/MAC addresses, enabling potential man-in-the-middle attacks between spoofed and legitimate hosts. The Red Hat and NVD/NVDA references describe the same impact. Snyk reports org.onosproject:o...

9.8CVSS7AI score0.00347EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2025/05/29 12:0 a.m.56 views

CVE-2024-53423

CVE-2024-53423 concerns Open Network Foundation ONOS v2.7.0 where attackers can cause a Denial of Service by sending crafted packets. The entry is supported by multiple sources (NVD, CVE records, Red Hat advisory, OSV, CNNVD, PT Security). CVSS v3.1 base score is 5.6 (Network, Low/Low/Low impacts...

5.6CVSS6.8AI score0.00242EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2025/05/29 12:0 a.m.13 views

CVE-2024-53423

An issue in Open Network Foundation ONOS v2.7.0 allows attackers to cause a Denial of Service DoS via supplying crafted packets...

0.00242EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/03/26 12:21 a.m.17 views

CVE-2025-29312

An issue in onos v2.7.0 allows attackers to trigger unexpected behavior within a device connected to a legacy switch via changing the link type from indirect to direct...

9.1CVSS7.1AI score0.00454EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/03/26 12:21 a.m.15 views

CVE-2025-29310

An issue in onos v2.7.0 allows attackers to trigger a packet deserialization problem when supplying a crafted LLDP packet. This vulnerability allows attackers to execute arbitrary commands or access network information...

9.8CVSS8AI score0.00511EPSS
Exploits0References1
NVD
NVD
added 2025/03/24 9:15 p.m.25 views

CVE-2025-29310

An issue in onos v2.7.0 allows attackers to trigger a packet deserialization problem when supplying a crafted LLDP packet. This vulnerability allows attackers to execute arbitrary commands or access network information...

9.8CVSS0.00511EPSS
Exploits0References1
CVE
CVE
added 2025/03/24 12:0 a.m.69 views

CVE-2025-29312

CVE-2025-29312 affects ONOS v2.7.0. The vulnerability allows triggering unexpected behavior in a device connected to a legacy switch by changing the link type from indirect to direct. CVSS 3.1 base score 9.1 (CRITICAL) with Network attack vector, no privileges required, no user interaction; confi...

9.1CVSS7AI score0.00454EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2025/03/24 12:0 a.m.24 views

CVE-2025-29311

Limited secret space in LLDP packets used in onos v2.7.0 allows attackers to obtain the private key via a bruteforce attack. Attackers are able to leverage this vulnerability into creating crafted LLDP packets...

0.00345EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/24 12:0 a.m.9 views

CVE-2025-29312

An issue in onos v2.7.0 allows attackers to trigger unexpected behavior within a device connected to a legacy switch via changing the link type from indirect to direct...

7AI score0.00454EPSS
Exploits1References1
CVE
CVE
added 2025/03/24 12:0 a.m.73 views

CVE-2025-29310

The CVE refers to ONOS v2.7.0 where a vulnerability in LLDP packet deserialization can be triggered by a crafted LLDP packet, allowing an attacker to execute arbitrary commands or access network information. Affected component: ONOS 2.7.0 (deserialization path in LLDP handling). Root cause: packe...

9.8CVSS7.9AI score0.00511EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder