RHEL 7 : openvswitch (RHSA-2017:2665)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:2665 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic...

CVE-2024-51407

Floodlight SDN OpenFlow Controller v.1.2 has an issue that allows local hosts to construct false broadcast ports causing inter-host communication anomalies...

CVE-2024-51407

Floodlight SDN OpenFlow Controller v.1.2 has an issue that allows local hosts to construct false broadcast ports causing inter-host communication anomalies...

PT-2024-34621 · Unknown · Open Floodlight Sdn Controller

Name of the Vulnerable Software and Affected Versions: Floodlight SDN OpenFlow Controller version 1.2 Description: The issue allows local hosts to construct false broadcast ports, causing inter-host communication anomalies. Recommendations: For Floodlight SDN OpenFlow Controller version 1.2,...

CVE-2024-51407

CVE-2024-51407 affects Floodlight SDN OpenFlow Controller, version 1.2. The issue allows local hosts to construct false broadcast ports, causing inter-host communication anomalies. Documented CVSS v3.1 base score is 6.2 (Medium) with local attack vector, no user interaction, and high impact on av...

Floodlight OpenFlow Controller 安全漏洞

Floodlight OpenFlow Controller OSS is a Java-based open source enterprise SDN controller from Floodlight Open Source. A security vulnerability exists in Floodlight OpenFlow Controller version 1.2 that stems from allowing local hosts to construct fake broadcast ports, which can lead to abnormal...

Floodlight OpenFlow Controller 安全漏洞

Floodlight OpenFlow Controller OSS is a Java-based open source enterprise SDN controller from Floodlight Open Source. A security vulnerability exists in Floodlight OpenFlow Controller version 1.2, which stems from allowing local hosts to construct fake LLDP packets, which can lead to hosts inside...

libfluid 安全漏洞

libfluid is an Open Networking open source application. A security vulnerability exists in libfluid that stems from the fact that the fluidmsg::of13::Hello::unpack routine contains an out-of-bounds read vulnerability...

Denial Of Service (DoS)

ryu is vulnerable to Denial of Service DoS. The vulnerability is due to the OFPBucket function in parser.py when processing an OpenFlow action with a length of zero, which results an infinite loop...

SUSE CVE-2024-34483

OFPGroupDescStats in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via OFPBucket.len=0...

SUSE CVE-2024-34484

OFPBucket in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via action.len=0...

SUSE CVE-2024-34488

OFPMultipartReply in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via b.length=0...

PT-2024-25936 · Unknown · Faucet Sdn Ryu

Name of the Vulnerable Software and Affected Versions: Faucet SDN Ryu version 4.34 Description: The issue allows attackers to cause a denial of service infinite loop via OFPQueueProp.len=0. This occurs in the OFPPacketQueue in parser.py. Recommendations: For version 4.34, consider disabling the...

PT-2024-25937 · Unknown · Faucet Sdn Ryu

Name of the Vulnerable Software and Affected Versions: Faucet SDN Ryu version 4.34 Description: The issue allows attackers to cause a denial of service infinite loop via inst.length=0 in OFPFlowStats in parser.py. Recommendations: For version 4.34, consider disabling the OFPFlowStats function in...

Fedora 40 : openvswitch (2024-1f26ce7731)

The remote Fedora 40 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2024-1f26ce7731 advisory. Update to 3.3.0 Remove network-scripts subpackage starting from Fedora 40 Backport a simple fix to avoid SSL db: implementation test to fail It also...

RHEL 7 : openvswitch (RHSA-2017:2692)

The remote Redhat Enterprise Linux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2017:2692 advisory. Open vSwitch provides standard network bridging functions and support for the OpenFlow protocol for remote per-flow control of traffic...

CVE-2024-29461

An issue in Floodlight SDN OpenFlow Controller v.1.2 allows a remote attacker to cause a denial of service via the datapath id component...

CVE-2024-29461

An issue in Floodlight SDN OpenFlow Controller v.1.2 allows a remote attacker to cause a denial of service via the datapath id component...

PT-2024-22913 · Unknown · Open Floodlight Sdn Controller

Name of the Vulnerable Software and Affected Versions: Floodlight SDN OpenFlow Controller version 1.2 Description: An issue in the Floodlight SDN OpenFlow Controller allows a remote attacker to cause a denial of service via the datapath id component. Recommendations: For Floodlight SDN OpenFlow...

CVE-2024-29461

CVE-2024-29461 affects Floodlight SDN OpenFlow Controller v1.2, with a vulnerability in the datapath id component that enables a remote attacker to cause a denial of service. Public documentation consistently notes the issue but does not provide exploit specifics. PT-2024-22913 explicitly lists F...