Vulnerabilities > CVE-2017-1000360 - NULL Pointer Dereference vulnerability in Opendaylight 3.3/4.0

047910
CVSS 5.0 - MEDIUM
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
PARTIAL
network
low complexity
opendaylight
CWE-476

Summary

StreamCorruptedException and NullPointerException in OpenDaylight odl-mdsal-xsql. Controller launches exceptions in the console. Component: OpenDaylight odl-mdsal-xsql is vulnerable to this flaw. Version: The tested versions are OpenDaylight 3.3 and 4.0.

Vulnerable Configurations

Part Description Count
Application
Opendaylight
2

Common Weakness Enumeration (CWE)