Lucene search
+L

248 matches found

CVE
CVE
added 2024/05/05 12:0 a.m.70 views

CVE-2024-34489

CVE-2024-34489 affects Faucet SDN Ryu 4.34. The issue is in the OFPHello handling in parser.py, where a crafted length=0 input allows an attacker to trigger an infinite loop, causing a denial of service. Root cause: inadequate input validation for length=0. CVSS v3.1 indicates NETWORK attack vect...

7.5CVSS6.6AI score0.00681EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2024/05/05 12:0 a.m.61 views

CVE-2024-34483

The CVE-2024-34483 issue affects Faucet SDN Ryu 4.34, where a flaw in the OFPGroupDescStats handling in parser.py (OFPBucket.len=0) can trigger an infinite loop during parsing, leading to a denial of service. Multiple sources corroborate that the vulnerability stems from OFPGroupDescStats in the ...

7.5CVSS6.6AI score0.00681EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/05/05 12:0 a.m.20 views

CVE-2024-34486

OFPPacketQueue in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via OFPQueueProp.len=0...

6.6AI score0.00646EPSS
Exploits1References1
CVE
CVE
added 2024/05/05 12:0 a.m.67 views

CVE-2024-34488

The CVE-2024-34488 entry concerns Faucet SDN Ryu 4.34, where OFPMultipartReply in parser.py can trigger a denial-of-service (infinite loop) when b.length is set to 0. Connected documents corroborate the DoS behavior and reference the same function/parameter without detailing a published fix or af...

7.5CVSS6.6AI score0.00681EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2024/05/05 12:0 a.m.7 views

CVE-2024-34483

OFPGroupDescStats in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via OFPBucket.len=0...

7.5CVSS7.3AI score0.00681EPSS
Exploits1References3
OSV
OSV
added 2024/05/05 12:0 a.m.10 views

CVE-2024-34484

OFPBucket in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via action.len=0...

5.3CVSS5.2AI score0.00457EPSS
Exploits1References3
OSV
OSV
added 2024/05/05 12:0 a.m.8 views

CVE-2024-34489

OFPHello in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via length=0...

7.5CVSS7.3AI score0.00681EPSS
Exploits1References3
OSV
OSV
added 2024/05/05 12:0 a.m.12 views

CVE-2024-34487

OFPFlowStats in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via inst.length=0...

7.5CVSS7.3AI score0.00681EPSS
Exploits1References3
OSV
OSV
added 2024/05/05 12:0 a.m.13 views

CVE-2024-34488

OFPMultipartReply in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via b.length=0...

7.5CVSS7.3AI score0.00681EPSS
Exploits1References3
CNNVD
CNNVD
added 2024/05/05 12:0 a.m.7 views

Faucet SDN Ryu 安全漏洞

Faucet SDN Ryu is a component-based software-defined networking framework from Faucet Open Source. A security vulnerability exists in Faucet SDN Ryu version 4.34, which stems from a vulnerability that allows an attacker to cause a denial of service by manipulating inst.length=0...

7.5CVSS7.2AI score0.00681EPSS
Exploits1References2
OSV
OSV
added 2024/05/05 12:0 a.m.8 views

CVE-2024-34486

OFPPacketQueue in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via OFPQueueProp.len=0...

7.5CVSS7.3AI score0.00646EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/05/05 12:0 a.m.14 views

CVE-2024-34483

OFPGroupDescStats in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via OFPBucket.len=0...

6.7AI score0.00681EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2024/05/04 12:0 a.m.7 views

PT-2024-25934

Name of the Vulnerable Software and Affected Versions Faucet SDN Ryu version 4.34 Description The issue allows attackers to cause a denial of service infinite loop via OFPBucket.len=0 in OFPGroupDescStats in parser.py. Recommendations For version 4.34, consider disabling the OFPGroupDescStats...

7.5CVSS7.1AI score0.00681EPSS
Exploits1References11
Positive Technologies
Positive Technologies
added 2024/05/04 12:0 a.m.9 views

PT-2024-25938

Name of the Vulnerable Software and Affected Versions Faucet SDN Ryu version 4.34 Description The issue allows attackers to cause a denial of service infinite loop via b.length=0 in OFPMultipartReply in parser.py. Recommendations For version 4.34, consider disabling the OFPMultipartReply function...

7.5CVSS7.1AI score0.00681EPSS
Exploits1References11
CNNVD
CNNVD
added 2024/04/29 12:0 a.m.6 views

Open Networking Foundation ONOS 安全漏洞

Open Networking Foundation ONOS is an open source SDN controller open sourced by Open Networking Foundation. for building next-generation SDN/NFV solutions. A security vulnerability exists in Open Networking Foundation ONOS onos-ric-sdk-go version 0.8.12, which stems from an infinite duplicate...

6.5CVSS6.8AI score0.00422EPSS
Exploits1References2
NVD
NVD
added 2024/04/12 2:15 p.m.12 views

CVE-2024-29461

An issue in Floodlight SDN OpenFlow Controller v.1.2 allows a remote attacker to cause a denial of service via the datapath id component...

6.3CVSS6.6AI score0.00512EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/04/12 12:0 a.m.17 views

CVE-2024-29461

An issue in Floodlight SDN OpenFlow Controller v.1.2 allows a remote attacker to cause a denial of service via the datapath id component...

6.9AI score0.00512EPSS
Exploits1References2
CVE
CVE
added 2024/04/12 12:0 a.m.55 views

CVE-2024-29461

CVE-2024-29461 affects Floodlight SDN OpenFlow Controller v1.2, with a vulnerability in the datapath id component that enables a remote attacker to cause a denial of service. Public documentation consistently notes the issue but does not provide exploit specifics. PT-2024-22913 explicitly lists F...

6.3CVSS6.8AI score0.00512EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2024/04/12 12:0 a.m.24 views

CVE-2024-29461

An issue in Floodlight SDN OpenFlow Controller v.1.2 allows a remote attacker to cause a denial of service via the datapath id component...

6.8AI score0.00512EPSS
Exploits1References2
OSV
OSV
added 2024/04/12 12:0 a.m.6 views

CVE-2024-29461

An issue in Floodlight SDN OpenFlow Controller v.1.2 allows a remote attacker to cause a denial of service via the datapath id component...

6.3CVSS7.1AI score0.00512EPSS
Exploits1References4
Rows per page
Query Builder