CVE-2024-57672

CVSS v3.1

5.5

Medium

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:N/I:N/A:H

Name of the Vulnerable Software and Affected Versions Floodlight version 1.2

Description An issue in Floodlight allows a local attacker to cause a denial of service via the Topology Manager module, the Topologylnstance module, and the Routing module.

Recommendations For Floodlight version 1.2, consider disabling the Topology Manager module, the Topologylnstance module, and the Routing module as a temporary workaround to minimize the risk of exploitation. Restrict access to these modules to prevent a local attacker from causing a denial of service.

Fix

DoS

Resource Exhaustion

Allocation of Resources Without Limits

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-400CWE-770

Related Identifiers

CVE-2024-57672

Affected Products

Floodlight

CVE-2024-57672

Weakness Enumeration

Related Identifiers

Affected Products

References · 7