An issue was discovered in ONOS 2.5.1. To attack an intent installed by a normal user, a remote attacker can install a duplicate intent with a different key, and then remove the duplicate one. This will remove the flow rules of the intent, even though the intent still exists in the controller.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-04-20T00:00:00
Updated: 2024-08-03T03:59:23.931Z
Reserved: 2022-01-28T00:00:00
Link: CVE-2022-24109
Vulnrichment
No data.
NVD
Status : Modified
Published: 2023-04-20T13:15:06.950
Modified: 2024-11-21T06:49:49.363
Link: CVE-2022-24109
Redhat
No data.