CVE-2015-1612
NONE EPSS 79.2%
Published Apr 4, 20179y ago · Modified Jun 17, 20262w ago
Published Apr 4, 2017 9y ago
Last Modified Jun 17, 2026 2w ago
Description
OpenFlow plugin for OpenDaylight before Helium SR3 allows remote attackers to spoof the SDN topology and affect the flow of data, related to the reuse of LLDP packets, aka "LLDP Relay."
Threat Intelligence
EPSS Exploit Probability
79.2% percentile
Exploit & Patch Status
No Known Exploit
Patch Available
Weaknesses 1
CWE-20 Improper Input Validation Validation
Affected Products 1
| Vendor | Product | Version | Range |
|---|---|---|---|
| opendaylight | openflow | * | any |
References 6
- internetsociety.org http://www.internetsociety.org/sites/default/files/10_4_2.pdf
- securityfocus.com http://www.securityfocus.com/bid/73254
- cloudrouter.org https://cloudrouter.org/security/
- git.opendaylight.org https://git.opendaylight.org/gerrit/#/c/16193/
- git.opendaylight.org https://git.opendaylight.org/gerrit/#/c/16208/
- wiki.opendaylight.org https://wiki.opendaylight.org/view/Security_Advisories#.5BModerate.5D_CVE-2015-1611_CVE-2015-1612_openflowplugin:_topology_spoofing_via_LLDP
Remediation
- git.opendaylight.org https://git.opendaylight.org/gerrit/#/c/16193/
- git.opendaylight.org https://git.opendaylight.org/gerrit/#/c/16208/
- wiki.opendaylight.org https://wiki.opendaylight.org/view/Security_Advisories#.5BModerate.5D_CVE-2015-1611_CVE-2015-1612_openflowplugin:_topology_spoofing_via_LLDP