55 matches found
The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a malicious actor to gain unauthorized access to protected information and to modify, add, or delete data.
The vulnerability in the vManage web interface of the Cisco SD-WAN programmatically defined network is related to errors in restricting XML links to external objects. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information and to modify, add, or...
The vulnerability in the web-based management interface of Cisco SD-WAN allows a attacker to execute cross-site attacks.
The vulnerability in the Cisco SD-WAN programmatically-defined network management web interface is related to the lack of protective measures for the web page structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks...
The vulnerability in the vManage web interface of the programmatically defined Cisco SD-WAN network allows a intruder to gain unauthorized access to protected information.
The vulnerability in the vManage web interface of the Cisco SD-WAN program-defined network is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...
CVE-2020-6865
ZTE SDN controller platform is impacted by an information leakage vulnerability. Due to the program's failure to optimize the response of failure to the request, the caller can directly view the internal error code location of the component. Attackers could exploit this vulnerability to obtain...
ONAP SDNC Operating System Command Injection Vulnerability
The ONAP SDNC is a network-defined network controller from the ONAP program. An operating system command injection vulnerability exists in ONAP SDNC versions prior to 4.0.0. The vulnerability can be exploited to execute arbitrary commands with the help of a specially crafted 'module' parameter...
ONAP SDNC Operating System Command Injection Vulnerability (CNVD-2020-28055)
The ONAP SDNC is a network-defined network controller from the ONAP program. An operating system command injection vulnerability exists in ONAP SDNC Dublin. An attacker can exploit this vulnerability to execute arbitrary commands with the help of a specially crafted 'filename' parameter...
Product release: Virtuozzo Infrastructure Platform 3.5
In this release, Virtuozzo Infrastructure Platform offers a wide range of new features that enhance the experience of users working with compute virtualization and software-defined networking functionalities. Additionally, the update delivers stability improvements and addresses bugs found in...
Product release: Virtuozzo Infrastructure Platform 3.0
In this release, Virtuozzo Infrastructure Platform offers a wide range of new features that enhance the experience of users working with compute virtualization and software-defined networking functionalities. Additionally, the update delivers stability improvements and addresses bugs found in...
Product release: Virtuozzo Infrastructure Platform 2.5
This product is formerly known as Virtuozzo Storage. With this release, Virtuozzo Infrastructure Platform offers a wide range of new features for compute virtualization and software-defined networking, as well as enhancements and stability improvements. It also addresses issues found in the...
OpenFlow has multiple vulnerabilities
OpenFlow is an open source network communication protocol, a data link layer that controls the forwarding plane of a network switch or router, and is considered one of the first software-defined networking SDN standards. A denial of service and improper authorization vulnerability exists in the...
BGP Swiss Army Knife: ExaBGP
ExaBGP provides a convenient way to implement Software Defined Networking by transforming BGP messages into friendly plain text or JSON, which can then be easily handled by simple scripts or your BSS/OSS. It is routinely used to improve service resilience and provide protection against network or...
The vulnerability of the HP SDN VAN Controller, a system for managing virtual networks, allows a hacker to execute arbitrary code.
The vulnerability of the HP SDN VAN Controller’s virtual network management subsystem is related to resource management errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending network packets to the REST port...
Flexible DDoS Defense: Bohatei
DDoS defense today relies on expensive and proprietary hardware appliances deployed at fixed locations. This introduces key limitations with respect to flexibility e.g., complex routing to get traffic to these “chokepoints” and elasticity in handling changing attack patterns. We observe an...
OpenDaylight Helium Authentication Bypass Vulnerability
Opendaylight, a project of the Linux Foundation in the United States, is a community-driven, open-source, software-defined networking framework that contains an ensemble of modules capable of performing networking tasks that need to be done quickly. An authentication bypass vulnerability exists i...
Defense4all Security Bypass Vulnerability
Defense4All is an open SDN security application released by Radware, Inc. A security bypass vulnerability exists in Defense4all, which can be exploited by an attacker to bypass certain security restrictions and perform unauthorized operations...