Search
Total
5 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2017-1000079 | 1 Onosproject | 1 Onos | 2020-12-07 | 5.0 MEDIUM | 7.5 HIGH |
| Linux foundation ONOS 1.9.0 is vulnerable to a DoS. | |||||
| CVE-2017-1000080 | 1 Onosproject | 1 Onos | 2020-12-07 | 5.0 MEDIUM | 7.5 HIGH |
| Linux foundation ONOS 1.9.0 allows unauthenticated use of websockets. | |||||
| CVE-2018-1000615 | 1 Onosproject | 1 Onos | 2020-08-24 | 5.0 MEDIUM | 7.5 HIGH |
| ONOS ONOS Controller version 1.13.1 and earlier contains a Denial of Service (Service crash) vulnerability in OVSDB component in ONOS that can result in An adversary can remotely crash OVSDB service ONOS controller via a normal switch.. This attack appear to be exploitable via the attacker should be able to control or forge a switch in the network.. | |||||
| CVE-2017-13763 | 1 Onosproject | 1 Onos | 2019-10-03 | 5.0 MEDIUM | 7.5 HIGH |
| ONOS versions 1.8.0, 1.9.0, and 1.10.0 do not restrict the amount of memory allocated. The Netty payload size is not limited. | |||||
| CVE-2015-7516 | 1 Onosproject | 1 Onos | 2017-08-30 | 7.8 HIGH | 7.5 HIGH |
| ONOS before 1.5.0 when using the ifwd app allows remote attackers to cause a denial of service (NULL pointer dereference and switch disconnect) by sending two Ethernet frames with ether_type Jumbo Frame (0x8870). | |||||