CVE-2019-16299

Name of the Vulnerable Software and Affected Versions Open Network Operating System (ONOS) version 1.14

Description An issue was discovered in the mobility application (org.onosproject.mobility) where the host event listener does not handle the event types: HOST ADDED, HOST REMOVED, HOST UPDATED. This could lead to the absence of intended code execution when combined with other applications.

Recommendations For Open Network Operating System (ONOS) version 1.14, consider modifying the host event listener in the mobility application to handle the missing event types (HOST ADDED, HOST REMOVED, HOST UPDATED) to prevent unintended code execution absence. At the moment, there is no information about a newer version that contains a fix for this vulnerability.