Vulnerabilities > CVE-2019-16297 - Improper Handling of Exceptional Conditions vulnerability in Linuxfoundation Open Network Operating System 1.14.0

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
NONE
Integrity impact
NONE
Availability impact
HIGH
network
low complexity
linuxfoundation
CWE-755

Summary

An issue was discovered in Open Network Operating System (ONOS) 1.14. In the P4 tutorial application (org.onosproject.p4tutorial), the host event listener does not handle the following event types: HOST_MOVED, HOST_REMOVED, HOST_UPDATED. In combination with other applications, this could lead to the absence of intended code execution.

Vulnerable Configurations

Part Description Count
OS
Linuxfoundation
1