Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in ONOS 2.5.1. An intent with an uppercase letter in a device ID shows the CORRUPT state, which is misleading to a network operator. Improper handling of case sensitivity causes inconsistency between intent and flow rules in the network.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Open Networking Foundation ONOS 安全漏洞
Vulnerability Description
Open Networking Foundation ONOS是Open Networking Foundation开源的一个开源SDN控制器。用于构建下一代 SDN/NFV 解决方案。 Open Networking Foundation ONOS 2.5.1版本存在安全漏洞,该漏洞源于设备 ID 中带有大写字母的 Intent 表示 CORRUPT 状态,这会误导网络运营商,区分大小写的不当处理会导致网络中intents和流规则之间的不一致。
CVSS Information
N/A
Vulnerability Type
N/A