High severity7.5OSV Advisory· Published Jul 9, 2018· Updated Jun 17, 2026
CVE-2018-1000615
CVE-2018-1000615
Description
ONOS ONOS Controller version 1.13.1 and earlier contains a Denial of Service (Service crash) vulnerability in OVSDB component in ONOS that can result in An adversary can remotely crash OVSDB service ONOS controller via a normal switch.. This attack appear to be exploitable via the attacker should be able to control or forge a switch in the network..
Affected products
2- Range: 1.0.0, 1.1.0, 1.1.0-rc2, …
- Range: <=1.13.1
Patches
Vulnerability mechanics
References
2- gerrit.onosproject.orgnvdIssue TrackingPatchThird Party Advisory
- gms.cl0udz.com/OVSDB_DOS.pdfnvdExploitThird Party Advisory
News mentions
0No linked articles in our index yet.