Vulnerabilities > CVE-2015-6569 - NULL Pointer Dereference vulnerability in Atlassian Floodlight
Attack vector
NETWORK Attack complexity
HIGH Privileges required
NONE Confidentiality impact
NONE Integrity impact
NONE Availability impact
HIGH Summary
Race condition in the LoadBalancer module in the Atlassian Floodlight Controller before 1.2 allows remote attackers to cause a denial of service (NULL pointer dereference and thread crash) via a state manipulation attack.
Vulnerable Configurations
Part | Description | Count |
---|---|---|
Application | 6 |
Common Weakness Enumeration (CWE)
References
- http://www.securityfocus.com/bid/103132
- http://www.securityfocus.com/bid/103132
- https://floodlight.atlassian.net/wiki/spaces/floodlightcontroller/pages/24805419/Floodlight+v1.2
- https://floodlight.atlassian.net/wiki/spaces/floodlightcontroller/pages/24805419/Floodlight+v1.2
- https://github.com/floodlight/floodlight/pull/563
- https://github.com/floodlight/floodlight/pull/563