CVE-2019-16299

An issue was discovered in Open Network Operating System (ONOS) 1.14. In the mobility application (org.onosproject.mobility), the host event listener does not handle the following event types: HOST_ADDED, HOST_REMOVED, HOST_UPDATED. In combination with other applications, this could lead to the absence of intended code execution.
References
Link Resource
https://www.ndss-symposium.org/wp-content/uploads/2020/02/24080.pdf Technical Description Third Party Advisory
https://www.ndss-symposium.org/wp-content/uploads/2020/02/24080.pdf Technical Description Third Party Advisory
Configurations

Configuration 1 (hide)

cpe:2.3:o:linuxfoundation:open_network_operating_system:1.14.0:-:*:*:*:*:*:*

History

21 Nov 2024, 04:30

Type Values Removed Values Added
References () https://www.ndss-symposium.org/wp-content/uploads/2020/02/24080.pdf - Technical Description, Third Party Advisory () https://www.ndss-symposium.org/wp-content/uploads/2020/02/24080.pdf - Technical Description, Third Party Advisory

Information

Published : 2020-02-20 22:15

Updated : 2024-11-21 04:30


NVD link : CVE-2019-16299

Mitre link : CVE-2019-16299

CVE.ORG link : CVE-2019-16299


JSON object : View

Products Affected

linuxfoundation

  • open_network_operating_system
CWE
CWE-755

Improper Handling of Exceptional Conditions