← back
CVE-2024-46942

CVE-2024-46942

CVSS 9.1 CRITICALEPSS 0.4%CWE-285
In OpenDaylight Model-Driven Service Abstraction Layer (MD-SAL) through 13.0.1, a controller with a follower role can configure flow entries in an OpenDaylight clustering deployment.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
https://docs.opendaylight.org/en/latest/release-notes/projects/mdsal.htmlhttps://doi.org/10.48550/arXiv.2408.16940https://lf-opendaylight.atlassian.net/browse/MDSAL-869