Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
OpenKilda XXE in SAML configuration
Vulnerability Description
OpenKilda is an open-source OpenFlow controller. Prior to version 1.164.0, an XML external entity (XXE) injection vulnerability was found in OpenKilda which in combination with GHSL-2025-024 allows unauthenticated attackers to exfiltrate information from the instance where the OpenKilda UI is running. This issue may lead to Information disclosure. This issue has been patched in version 1.164.0.
CVSS Information
N/A
Vulnerability Type
XML外部实体引用的不恰当限制(XXE)
Vulnerability Title
open-kilda 代码问题漏洞
Vulnerability Description
open-kilda是Telstra开源的一个OpenFlow控制器。 open-kilda 1.164.0之前版本存在代码问题漏洞,该漏洞源于XML外部实体注入,可能导致信息泄露。
CVSS Information
N/A
Vulnerability Type
N/A