CVE-2022-29605

Name of the Vulnerable Software and Affected Versions ONOS version 2.5.1

Description An issue was discovered where IntentManager attempts to install IPv6 flow rules of an intent into an OpenFlow 1.0 switch that does not support IPv6. This is due to improper handling of the difference in capabilities of the intent and switch, which can be misleading to a network operator.

Recommendations For ONOS version 2.5.1, as a temporary workaround, consider disabling the IntentManager function until a patch is available to properly handle the difference in capabilities between the intent and the switch.