CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-46943

An issue was discovered in OpenDaylight Authentication, Authorization and Accounting (AAA) through 0.19.3. A rogue controller can join a cluster to impersonate an offline peer, even if this rogue controller does not possess the complete cluster configuration information.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.0

EPSS Ranking 11.5%

CVSS Severity

CVSS v3 Score 7.5

References

Products affected by CVE-2024-46943

None » None » Version:

_authorization_and_accounting:-
None » None » Version:

_authorization_and_accounting:0.17.15
None » None » Version:

_authorization_and_accounting:0.18.5
None » None » Version:

_authorization_and_accounting:0.19.0
None » None » Version:

_authorization_and_accounting:0.19.1
None » None » Version:

_authorization_and_accounting:0.19.2
None » None » Version:

_authorization_and_accounting:0.19.3
Opendaylight » Authentication » Version: Any

cpe:2.3:a:opendaylight:authentication

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-46943

Products

Pricing

Contact Us