VYPR
Medium severity4.9NVD Advisory· Published Jul 18, 2019· Updated Jun 17, 2026

CVE-2019-1010250

CVE-2019-1010250

Description

The Linux Foundation ONOS 2.0.0 and earlier is affected by: Poor Input-validation. The impact is: A network administrator (or attacker) can install unintended flow rules in the switch by mistake. The component is: createFlow() and createFlows() functions in FlowWebResource.java (RESTful service). The attack vector is: network management and connectivity.

Affected products

2
  • Linux/ONOSllm-create
    Range: <=2.0.0
  • The Linux Foundation/ONOSv5
    Range: 2.0.0 and earlier

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.

CVE-2019-1010250 · Medium · VYPR