4 matches found
CVE-2024-57673
Affected software: Floodlight v1.2 (OpenFlow controller). Vulnerability (as described): An issue allows a local attacker to cause a denial of service via the Topology Manager module and the Linkdiscovery module. Root cause / impact: The provided documents only state the DoS impact; no deeper tech...
CVE-2024-57672
CVE-2024-57672 affects Floodlight v1.2. The vulnerability allows a local attacker to cause a denial of service via the Topology Manager module, the TopologyInstance module, and the Routing module. The issue is described across multiple feeds (NVD/Red Hat/OSV/CNNVD) with a local access vector and ...
CVE-2024-51407
CVE-2024-51407 affects Floodlight SDN OpenFlow Controller, version 1.2. The issue allows local hosts to construct false broadcast ports, causing inter-host communication anomalies. Documented CVSS v3.1 base score is 6.2 (Medium) with local attack vector, no user interaction, and high impact on av...
CVE-2018-1000163
Floodlight web console contains a Cross Site Scripting (XSS) flaw in version 1.2 and earlier. The vulnerability allows JavaScript injections when a victim browses the web console. Connected sources corroborate the XSS description but do not provide concrete exploit details, affected file paths, o...