CVE-2015-1610

Опубликовано: 20 мар. 2017

Источник: nvd

CVSS3: 5.3

CVSS2: 5

EPSS Низкий

Описание

hosttracker in OpenDaylight l2switch allows remote attackers to change the host location information by spoofing the MAC address, aka "topology spoofing."

Ссылки

http://www.internetsociety.org/sites/default/files/10_4_2.pdf
Technical Description
http://www.securityfocus.com/bid/73251
Third Party Advisory
VDB Entry
https://wiki.opendaylight.org/view/Security_Advisories#.5BModerate.5D_CVE-2015-1610_l2switch:_topology_spoofing_via_hosttracker
Vendor Advisory
http://www.internetsociety.org/sites/default/files/10_4_2.pdf
Technical Description
http://www.securityfocus.com/bid/73251
Third Party Advisory
VDB Entry
https://wiki.opendaylight.org/view/Security_Advisories#.5BModerate.5D_CVE-2015-1610_l2switch:_topology_spoofing_via_hosttracker
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:opendaylight:l2switch:-:*:*:*:*:*:*:*

EPSS

Процентиль: 49%

0.00256

Низкий

5.3 Medium

CVSS3

5 Medium

CVSS2

Дефекты

CWE-264

Связанные уязвимости

GHSA-h8g8-5hxr-929v