Описание
OpenFlow plugin for OpenDaylight LLDP Relay
OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to the reuse of LLDP packets, aka "LLDP Relay."
Ссылки
- https://nvd.nist.gov/vuln/detail/CVE-2015-1612
- https://git.opendaylight.org/gerrit/#/c/16193
- https://git.opendaylight.org/gerrit/#/c/16208
- https://web.archive.org/web/20150510044305/https://wiki.opendaylight.org/view/Security_Advisories#.5BModerate.5D_CVE-2015-1611_CVE-2015-1612_openflowplugin:_topology_spoofing_via_LLDP
- https://web.archive.org/web/20150701104709/https://www.internetsociety.org/sites/default/files/10_4_2.pdf
Пакеты
Наименование
org.opendaylight.openflowplugin:openflowplugin
maven
Затронутые версииВерсия исправления
< 0.0.6-Helium-SR3
0.0.6-Helium-SR3
Связанные уязвимости
CVSS3: 7.5
nvd
почти 9 лет назад
OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to the reuse of LLDP packets, aka "LLDP Relay."