Skip to content

OpenDaylight Model-Driven Service Abstraction Layer (MD-SAL) allows follower controller to set up flow entries

Moderate severity GitHub Reviewed Published Sep 16, 2024 to the GitHub Advisory Database • Updated Sep 16, 2024

Package

maven org.opendaylight.mdsal:mdsal-artifacts (Maven)

Affected versions

<= 13.0.1

Patched versions

None

Description

In OpenDaylight Model-Driven Service Abstraction Layer (MD-SAL) through 13.0.1, a controller with a follower role can configure flow entries in an OpenDaylight clustering deployment.

References

Published by the National Vulnerability Database Sep 15, 2024
Published to the GitHub Advisory Database Sep 16, 2024
Reviewed Sep 16, 2024
Last updated Sep 16, 2024

Severity

Moderate

EPSS score

0.045%
(16th percentile)

Weaknesses

CVE ID

CVE-2024-46942

GHSA ID

GHSA-hv38-h5pj-c96j

Source code

Loading Checking history
See something to contribute? Suggest improvements for this vulnerability.