4 matches found
CVE-2020-18685
CVE-2020-18685 concerns Floodlight (OpenFlow controller) up to version 1.2. The root cause is poor input validation in the checkFlow method of StaticFlowEntryPusherResource.java, arising from unchecked prerequisites related to TCP/UDP ports and group or table IDs. The vulnerability’s impact per t...
CVE-2020-18683
CVE-2020-18683 affects Floodlight up to version 1.2, due to poor input validation in StaticFlowEntryPusherResource.java (checkFlow) caused by mishandling of undefined fields. The entry is supported by multiple sources (NVD, Red Hat, CVE lists, CNNVD, etc.), which describe the same root cause. The...
CVE-2020-18684
Floodlight OpenFlow controller (affected up to 1.2) contains an integer overflow in StaticFlowEntryPusherResource.java: checkFlow via priority or port number. This is the root cause described across multiple sources. Current documents do not provide a confirmed patch version or remediation detail...
CVE-2015-6569
The vulnerability CVE-2015-6569 affects Atlassian Floodlight Controller’s LoadBalancer module. The issue is a race condition in the LoadBalancer component present in Floodlight Controller versions before 1.2, which can be triggered remotely by an attacker via standard network interaction to cause...