248 matches found
CVE-2024-34489
CVE-2024-34489 affects Faucet SDN Ryu 4.34. The issue is in the OFPHello handling in parser.py, where a crafted length=0 input allows an attacker to trigger an infinite loop, causing a denial of service. Root cause: inadequate input validation for length=0. CVSS v3.1 indicates NETWORK attack vect...
CVE-2024-34483
The CVE-2024-34483 issue affects Faucet SDN Ryu 4.34, where a flaw in the OFPGroupDescStats handling in parser.py (OFPBucket.len=0) can trigger an infinite loop during parsing, leading to a denial of service. Multiple sources corroborate that the vulnerability stems from OFPGroupDescStats in the ...
CVE-2024-34486
OFPPacketQueue in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via OFPQueueProp.len=0...
CVE-2024-34488
The CVE-2024-34488 entry concerns Faucet SDN Ryu 4.34, where OFPMultipartReply in parser.py can trigger a denial-of-service (infinite loop) when b.length is set to 0. Connected documents corroborate the DoS behavior and reference the same function/parameter without detailing a published fix or af...
CVE-2024-34483
OFPGroupDescStats in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via OFPBucket.len=0...
CVE-2024-34484
OFPBucket in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via action.len=0...
CVE-2024-34489
OFPHello in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via length=0...
CVE-2024-34487
OFPFlowStats in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via inst.length=0...
CVE-2024-34488
OFPMultipartReply in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via b.length=0...
Faucet SDN Ryu 安全漏洞
Faucet SDN Ryu is a component-based software-defined networking framework from Faucet Open Source. A security vulnerability exists in Faucet SDN Ryu version 4.34, which stems from a vulnerability that allows an attacker to cause a denial of service by manipulating inst.length=0...
CVE-2024-34486
OFPPacketQueue in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via OFPQueueProp.len=0...
CVE-2024-34483
OFPGroupDescStats in parser.py in Faucet SDN Ryu 4.34 allows attackers to cause a denial of service infinite loop via OFPBucket.len=0...
PT-2024-25934
Name of the Vulnerable Software and Affected Versions Faucet SDN Ryu version 4.34 Description The issue allows attackers to cause a denial of service infinite loop via OFPBucket.len=0 in OFPGroupDescStats in parser.py. Recommendations For version 4.34, consider disabling the OFPGroupDescStats...
PT-2024-25938
Name of the Vulnerable Software and Affected Versions Faucet SDN Ryu version 4.34 Description The issue allows attackers to cause a denial of service infinite loop via b.length=0 in OFPMultipartReply in parser.py. Recommendations For version 4.34, consider disabling the OFPMultipartReply function...
Open Networking Foundation ONOS 安全漏洞
Open Networking Foundation ONOS is an open source SDN controller open sourced by Open Networking Foundation. for building next-generation SDN/NFV solutions. A security vulnerability exists in Open Networking Foundation ONOS onos-ric-sdk-go version 0.8.12, which stems from an infinite duplicate...
CVE-2024-29461
An issue in Floodlight SDN OpenFlow Controller v.1.2 allows a remote attacker to cause a denial of service via the datapath id component...
CVE-2024-29461
An issue in Floodlight SDN OpenFlow Controller v.1.2 allows a remote attacker to cause a denial of service via the datapath id component...
CVE-2024-29461
CVE-2024-29461 affects Floodlight SDN OpenFlow Controller v1.2, with a vulnerability in the datapath id component that enables a remote attacker to cause a denial of service. Public documentation consistently notes the issue but does not provide exploit specifics. PT-2024-22913 explicitly lists F...
CVE-2024-29461
An issue in Floodlight SDN OpenFlow Controller v.1.2 allows a remote attacker to cause a denial of service via the datapath id component...
CVE-2024-29461
An issue in Floodlight SDN OpenFlow Controller v.1.2 allows a remote attacker to cause a denial of service via the datapath id component...