Title: Vulnerability in Linux Foundation ONOS 2.0.0 and Earlier: Unintended Flow Rule Installation via Poor Input Validation

CVE-2019-1010252 · MEDIUM Severity

AV:N/AC:L/AU:S/C:N/I:P/A:P

The Linux Foundation ONOS 2.0.0 and earlier is affected by: Poor Input-validation. The impact is: A network administrator (or attacker) can install unintended flow rules in the switch by mistake. The component is: applyFlowRules() and apply() functions in FlowRuleManager.java. The attack vector is: network management and connectivity.

Learn more about our Cis Benchmark Audit For Distribution Independent Linux.