Erodedelko

**Name of the Vulnerable Software and Affected Versions** Faucet SDN Ryu version 4.34 **Description** The issue allows attackers to cause a denial of service (infinite loop) via `OFPBucket.len=0` in `OFPGroupDescStats` in parser.py. **Recommendations** For version 4.34, consider disabling the `OFPGroupDescStats` function in parser.py to prevent the denial of service (infinite loop) until a patch is available. Restrict access to the `OFPBucket.len=0` parameter to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Faucet SDN Ryu version 4.34 **Description** The issue allows attackers to cause a denial of service (infinite loop) via `action.len=0` in `OFPBucket` in parser.py. **Recommendations** For version 4.34, consider disabling the `OFPBucket` function in parser.py to prevent the denial of service (infinite loop) until a patch is available. Restrict access to the `action.len=0` parameter to minimize the risk of exploitation.

**Name of the Vulnerable Software and Affected Versions** Faucet SDN Ryu version 4.34 **Description** The issue allows attackers to cause a denial of service (infinite loop) via `inst.length=0` in `OFPFlowStats` in parser.py. **Recommendations** For version 4.34, consider disabling the `OFPFlowStats` function in parser.py to prevent the denial of service (infinite loop) until a patch is available.

**Name of the Vulnerable Software and Affected Versions** Floodlight SDN OpenFlow Controller version 1.2 **Description** An issue in the Floodlight SDN OpenFlow Controller allows a remote attacker to cause a denial of service via the `datapath id` component. **Recommendations** For Floodlight SDN OpenFlow Controller version 1.2, consider restricting access to the `datapath id` component to minimize the risk of exploitation until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.