Jiwon Kim kjw6855
kjw6855
/ gist:3b2963415aeca4cba52266761465d879
Created
May 28, 2025 04:53
Description for CVE-2024-24270
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [Description] | |
| An issue in Open Network Foundation ONOS v.2.7.2 allows a remote attacker to escalate privileges via the IntentManager.java and FlowRuleIntentInstaller.java components. | |
| ------------------------------------------ | |
| [Vulnerability Type] | |
| Incorrect Access Control | |
| ------------------------------------------ |
kjw6855
/ gist:9764e3f51b89119473e4d2c4f64dca27
Created
May 28, 2025 04:51
Description for CVE-2023-41591
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [Description] | |
| An issue in Open Network Foundation ONOS v2.7.0 allows attackers to create fake IP/MAC addresses and potentially execute a man-in-the-middle attack on communications between fake and real hosts. | |
| ------------------------------------------ | |
| [Vulnerability Type] | |
| Insecure Permissions | |
| ------------------------------------------ |
kjw6855
/ gist:abeecc798d138b49537393e1fd3a5e96
Created
May 28, 2025 04:49
Description for CVE-2024-53423
This file contains hidden or bidirectional Unicode text that may be interpreted or compiled differently than what appears below. To review, open the file in an editor that reveals hidden Unicode characters.
Learn more about bidirectional Unicode characters
| [Description] | |
| An issue in Open Network Foundation ONOS v2.7.0 allows attackers to cause a Denial of Service (DoS) via supplying crafted packets. | |
| ------------------------------------------ | |
| [VulnerabilityType Other] | |
| CWE-400: Uncontrolled Resource Consumption | |
| ------------------------------------------ |