17 matches found
EUVD-2015-1742
Malware in sbrugna...
EUVD-2015-1743
Malware in sbrugna...
EUVD-2017-1550
Malware in sbrugna...
GHSA-F2X4-547G-RP95 OpenFlow plugin for OpenDaylight LLDP Relay
OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to the reuse of LLDP packets, aka "LLDP Relay."...
LLDP Spoofing
Overview Affected versions of this package are vulnerable to LLDP Spoofing that allows an attacker to fake the SDN topology and manipulate the flow of data. Remediation Upgrade org.opendaylight.openflowplugin:openflowplugin to version 0.0.6-Helium-SR3 or higher. References - Gerrit Fix - Gerrit F...
OpenFlow plugin for OpenDaylight allows spoofing the SDN topology
OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to "fake LLDP injection."...
OpenFlow plugin for OpenDaylight LLDP Relay
OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to the reuse of LLDP packets, aka "LLDP Relay."...
GHSA-49WF-927P-JPVJ OpenFlow plugin for OpenDaylight allows spoofing the SDN topology
OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to "fake LLDP injection."...
Design/Logic Flaw
OpenFlow Plugin and OpenDayLight Controller versions Nitrogen, Carbon, Boron, Robert Varga, Anil Vishnoi contain a flaw when multiple 'expired' flows take up the memory resource of CONFIG DATASTORE which leads to CONTROLLER shutdown. If multiple different flows with 'idle-timeout' and...
CVE-2017-1000411
OpenFlow Plugin and OpenDayLight Controller versions Nitrogen, Carbon, Boron, Robert Varga, Anil Vishnoi contain a flaw when multiple 'expired' flows take up the memory resource of CONFIG DATASTORE which leads to CONTROLLER shutdown. If multiple different flows with 'idle-timeout' and...
CVE-2017-1000411
OpenFlow Plugin and OpenDayLight Controller versions Nitrogen, Carbon, Boron, Robert Varga, Anil Vishnoi contain a flaw when multiple 'expired' flows take up the memory resource of CONFIG DATASTORE which leads to CONTROLLER shutdown. If multiple different flows with 'idle-timeout' and...
CVE-2017-1000411
CVE-2017-1000411 affects OpenFlow Plugin and OpenDaylight Controller (Nitrogen, Carbon, Boron) with a flaw where multiple expired flows consume memory in CONFIG DATASTORE, causing the controller to shutdown once JVM/resource limits are reached. The issue arises when idle-timeout and hard-timeout ...
CVE-2017-1000411
OpenFlow Plugin and OpenDayLight Controller versions Nitrogen, Carbon, Boron, Robert Varga, Anil Vishnoi contain a flaw when multiple 'expired' flows take up the memory resource of CONFIG DATASTORE which leads to CONTROLLER shutdown. If multiple different flows with 'idle-timeout' and...
Buffer overflow
OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to the reuse of LLDP packets, aka "LLDP Relay."...
CVE-2015-1611
The OpenFlow plugin for OpenDaylight (before Helium SR3) is affected by LLDP spoofing via fake LLDP injections, enabling remote attackers to spoof the SDN topology and disrupt data flow. Affected component: openflowplugin in OpenDaylight; root cause: reuse/fake LLDP packets. Impact: topology spoo...
OpenDaylight OpenFlow Plugin Security Bypass Vulnerability
Opendaylight, a project of the Linux Foundation in the United States, is a community-driven, open-source, software-defined networking framework that contains an ensemble of modules capable of performing networking tasks that need to be done quickly. A security bypass vulnerability exists in the...
OpenDaylight OpenFlow plugin security bypass vulnerability (CNVD-2015-01911)
Opendaylight, a project of the Linux Foundation in the United States, is a community-driven, open-source, software-defined networking framework that contains an ensemble of modules capable of performing networking tasks that need to be done quickly. A security bypass vulnerability exists in the...