Vulnerabilities > CVE-2024-46942 - Unspecified vulnerability in Opendaylight Model-Driven Service Abstraction Layer

CVSS 6.5 - MEDIUM

Attack vector

NETWORK

Attack complexity

LOW

Privileges required

LOW

Confidentiality impact

NONE

Integrity impact

HIGH

Availability impact

NONE

network

low complexity

opendaylight

NVD

Published: 2024-09-15

Updated: 2024-09-25

Summary

In OpenDaylight Model-Driven Service Abstraction Layer (MD-SAL) through 13.0.1, a controller with a follower role can configure flow entries in an OpenDaylight clustering deployment.

Vulnerable Configurations

Part	Description	Count
Application	Opendaylight Opendaylight Model Driven Service Abstraction Layer *	1

References

https://lf-opendaylight.atlassian.net/browse/MDSAL-869
https://doi.org/10.48550/arXiv.2408.16940
https://docs.opendaylight.org/en/latest/release-notes/projects/mdsal.html