Vulnerabilities > Onosproject > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2018-07-09 | CVE-2018-1000615 | Unspecified vulnerability in Onosproject Onos ONOS ONOS Controller version 1.13.1 and earlier contains a Denial of Service (Service crash) vulnerability in OVSDB component in ONOS that can result in An adversary can remotely crash OVSDB service ONOS controller via a normal switch.. | 7.5 |
| 2017-08-30 | CVE-2017-13763 | Allocation of Resources Without Limits or Throttling vulnerability in Onosproject Onos 1.10.0/1.8.0/1.9.0 ONOS versions 1.8.0, 1.9.0, and 1.10.0 do not restrict the amount of memory allocated. | 7.5 |
| 2017-08-24 | CVE-2015-7516 | NULL Pointer Dereference vulnerability in Onosproject Onos ONOS before 1.5.0 when using the ifwd app allows remote attackers to cause a denial of service (NULL pointer dereference and switch disconnect) by sending two Ethernet frames with ether_type Jumbo Frame (0x8870). | 7.5 |
| 2017-07-17 | CVE-2017-1000080 | Unspecified vulnerability in Onosproject Onos 1.8.0/1.9.0 Linux foundation ONOS 1.9.0 allows unauthenticated use of websockets. | 7.5 |
| 2017-07-17 | CVE-2017-1000079 | Unspecified vulnerability in Onosproject Onos 1.8.0/1.9.0 Linux foundation ONOS 1.9.0 is vulnerable to a DoS. | 7.5 |