Vulnerabilities > Opendaylight > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-15 | CVE-2024-46942 | Unspecified vulnerability in Opendaylight Model-Driven Service Abstraction Layer In OpenDaylight Model-Driven Service Abstraction Layer (MD-SAL) through 13.0.1, a controller with a follower role can configure flow entries in an OpenDaylight clustering deployment. | 6.5 |
| 2017-04-24 | CVE-2017-1000360 | NULL Pointer Dereference vulnerability in Opendaylight 3.3/4.0 StreamCorruptedException and NullPointerException in OpenDaylight odl-mdsal-xsql. | 5.3 |
| 2017-04-24 | CVE-2017-1000359 | Resource Exhaustion vulnerability in Opendaylight 3.3/4.0 Java out of memory error and significant increase in resource consumption. | 5.3 |
| 2017-04-24 | CVE-2017-1000358 | NULL Pointer Dereference vulnerability in Opendaylight 4.0 Controller throws an exception and does not allow user to add subsequent flow for a particular switch. | 6.5 |
| 2017-03-20 | CVE-2015-1610 | Permissions, Privileges, and Access Controls vulnerability in Opendaylight L2Switch hosttracker in OpenDaylight l2switch allows remote attackers to change the host location information by spoofing the MAC address, aka "topology spoofing." | 5.3 |