Vulnerability Details CVE-2021-38364
An issue was discovered in ONOS 2.5.1. There is an incorrect comparison of flow rules installed by intents. A remote attacker can install or remove a new intent, and consequently modify or delete the existing flow rules related to other intents.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 33.6%
CVSS Severity
CVSS v3 Score 6.5
References
Products affected by CVE-2021-38364
-
cpe:2.3:a:opennetworking:onos:2.5.1