Atlassian: >> Floodlight >> 1.1 Security Vulnerabilities
Floodlight through 1.2 has poor input validation in checkFlow in StaticFlowEntryPusherResource.java because of undefined fields mishandling.
CVSS Score
9.8
EPSS Score
0.004
Published
2021-09-30
Floodlight through 1.2 has an integer overflow in checkFlow in StaticFlowEntryPusherResource.java via priority or port number.
CVSS Score
9.8
EPSS Score
0.004
Published
2021-09-30
Floodlight through 1.2 has poor input validation in checkFlow in StaticFlowEntryPusherResource.java because of unchecked prerequisites related to TCP or UDP ports, or group or table IDs.
CVSS Score
9.8
EPSS Score
0.004
Published
2021-09-30
Race condition in the LoadBalancer module in the Atlassian Floodlight Controller before 1.2 allows remote attackers to cause a denial of service (NULL pointer dereference and thread crash) via a state manipulation attack.
CVSS Score
5.9
EPSS Score
0.005
Published
2018-02-21