Lucene search
GoogleOSV:CVE-2021-38364HistoryApr 20, 2023 - 1:15 p.m.
CVE-2021-38364
2023-04-2013:15:06
Google
osv.dev
3
cve-2021-38364
onos
flow rules
remote attacker
intent modification
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
EPSS
0.002
Percentile
57.6%
An issue was discovered in ONOS 2.5.1. There is an incorrect comparison of flow rules installed by intents. A remote attacker can install or remove a new intent, and consequently modify or delete the existing flow rules related to other intents.
Related
prion
prion
Design/Logic Flaw
2023-04-20 13:15:00
cvelist
cvelist
CVE-2021-38364
2023-04-20 00:00:00
nvd
nvd
CVE-2021-38364
2023-04-20 13:15:06
cve
cve
CVE-2021-38364
2023-04-20 13:15:06
CVSS3
6.5
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
NONE
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L
EPSS
0.002
Percentile
57.6%
Related for OSV:CVE-2021-38364