Lucene search
K

55 matches found

BDU FSTEC
BDU FSTEC
added 2020/11/18 12:0 a.m.5 views

The vulnerability in the vManage web interface of the software-defined Cisco SD-WAN network allows a malicious actor to gain unauthorized access to protected information and to modify, add, or delete data.

The vulnerability in the vManage web interface of the Cisco SD-WAN programmatically defined network is related to errors in restricting XML links to external objects. Exploiting this vulnerability can allow an attacker to gain unauthorized access to protected information and to modify, add, or...

6.8CVSS6.5AI score0.00586EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/11/17 12:0 a.m.6 views

The vulnerability in the web-based management interface of Cisco SD-WAN allows a attacker to execute cross-site attacks.

The vulnerability in the Cisco SD-WAN programmatically-defined network management web interface is related to the lack of protective measures for the web page structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks...

6.4CVSS6.3AI score0.00641EPSS
Exploits0References2Affected Software1
BDU FSTEC
BDU FSTEC
added 2020/07/21 12:0 a.m.5 views

The vulnerability in the vManage web interface of the programmatically defined Cisco SD-WAN network allows a intruder to gain unauthorized access to protected information.

The vulnerability in the vManage web interface of the Cisco SD-WAN program-defined network is related to incorrect restrictions on XML references to external objects. Exploiting this vulnerability could allow a malicious actor to gain unauthorized access to protected information...

6.8CVSS6.8AI score0.01281EPSS
Exploits0References3Affected Software1
OSV
OSV
added 2020/04/30 10:15 p.m.4 views

CVE-2020-6865

ZTE SDN controller platform is impacted by an information leakage vulnerability. Due to the program's failure to optimize the response of failure to the request, the caller can directly view the internal error code location of the component. Attackers could exploit this vulnerability to obtain...

6.5CVSS6.7AI score0.00874EPSS
Exploits0References1
CNVD
CNVD
added 2020/03/19 12:0 a.m.2 views

ONAP SDNC Operating System Command Injection Vulnerability

The ONAP SDNC is a network-defined network controller from the ONAP program. An operating system command injection vulnerability exists in ONAP SDNC versions prior to 4.0.0. The vulnerability can be exploited to execute arbitrary commands with the help of a specially crafted 'module' parameter...

8.8CVSS8.2AI score0.01256EPSS
Exploits1References1
CNVD
CNVD
added 2020/03/19 12:0 a.m.1 views

ONAP SDNC Operating System Command Injection Vulnerability (CNVD-2020-28055)

The ONAP SDNC is a network-defined network controller from the ONAP program. An operating system command injection vulnerability exists in ONAP SDNC Dublin. An attacker can exploit this vulnerability to execute arbitrary commands with the help of a specially crafted 'filename' parameter...

9.8CVSS8.2AI score0.01464EPSS
Exploits1References1
Virtuozzo
Virtuozzo
added 2020/01/21 12:0 a.m.18 views

Product release: Virtuozzo Infrastructure Platform 3.5

In this release, Virtuozzo Infrastructure Platform offers a wide range of new features that enhance the experience of users working with compute virtualization and software-defined networking functionalities. Additionally, the update delivers stability improvements and addresses bugs found in...

0.2AI score
Exploits0
Virtuozzo
Virtuozzo
added 2019/07/02 12:0 a.m.26 views

Product release: Virtuozzo Infrastructure Platform 3.0

In this release, Virtuozzo Infrastructure Platform offers a wide range of new features that enhance the experience of users working with compute virtualization and software-defined networking functionalities. Additionally, the update delivers stability improvements and addresses bugs found in...

0.2AI score
Exploits0
Virtuozzo
Virtuozzo
added 2019/01/15 12:0 a.m.21 views

Product release: Virtuozzo Infrastructure Platform 2.5

This product is formerly known as Virtuozzo Storage. With this release, Virtuozzo Infrastructure Platform offers a wide range of new features for compute virtualization and software-defined networking, as well as enhancements and stability improvements. It also addresses issues found in the...

1.5AI score
Exploits0
CNVD
CNVD
added 2018/05/25 12:0 a.m.6 views

OpenFlow has multiple vulnerabilities

OpenFlow is an open source network communication protocol, a data link layer that controls the forwarding plane of a network switch or router, and is considered one of the first software-defined networking SDN standards. A denial of service and improper authorization vulnerability exists in the...

9.8CVSS9.3AI score0.01209EPSS
Exploits0References1
n0where
n0where
added 2017/03/20 4:51 a.m.58 views

BGP Swiss Army Knife: ExaBGP

ExaBGP provides a convenient way to implement Software Defined Networking by transforming BGP messages into friendly plain text or JSON, which can then be easily handled by simple scripts or your BSS/OSS. It is routinely used to improve service resilience and provide protection against network or...

7.1AI score
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2016/07/07 12:0 a.m.5 views

The vulnerability of the HP SDN VAN Controller, a system for managing virtual networks, allows a hacker to execute arbitrary code.

The vulnerability of the HP SDN VAN Controller’s virtual network management subsystem is related to resource management errors. Exploiting this vulnerability allows a malicious actor to execute arbitrary code by sending network packets to the REST port...

7.8CVSS6AI score0.02614EPSS
Exploits0References2Affected Software1
n0where
n0where
added 2015/12/11 12:12 a.m.27 views

Flexible DDoS Defense: Bohatei

DDoS defense today relies on expensive and proprietary hardware appliances deployed at fixed locations. This introduces key limitations with respect to flexibility e.g., complex routing to get traffic to these “chokepoints” and elasticity in handling changing attack patterns. We observe an...

7.4AI score
Exploits0References1
CNVD
CNVD
added 2015/03/23 12:0 a.m.5 views

OpenDaylight Helium Authentication Bypass Vulnerability

Opendaylight, a project of the Linux Foundation in the United States, is a community-driven, open-source, software-defined networking framework that contains an ensemble of modules capable of performing networking tasks that need to be done quickly. An authentication bypass vulnerability exists i...

9.8CVSS7AI score0.02749EPSS
Exploits0References1
CNVD
CNVD
added 2015/01/23 12:0 a.m.6 views

Defense4all Security Bypass Vulnerability

Defense4All is an open SDN security application released by Radware, Inc. A security bypass vulnerability exists in Defense4all, which can be exploited by an attacker to bypass certain security restrictions and perform unauthorized operations...

8.8CVSS6.9AI score0.01832EPSS
Exploits0References1
Rows per page
Query Builder