本ページは projectfloodlight floodlight に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2024-57673 | An issue in floodlight v1.2 allows a local attacker to cause a denial of service via the Topology Manager module and Linkdiscovery module | [email protected] | 5.5 | 0.16% | 2025-02-06 | 2025-04-23 |
| CVE-2024-57672 | An issue in floodlight v1.2 allows a local attacker to cause a denial of service via the Topology Manager module, Topologylnstance module, Routing module. | [email protected] | 5.5 | 0.13% | 2025-02-06 | 2025-04-23 |
| CVE-2024-51407 | Floodlight SDN OpenFlow Controller v.1.2 has an issue that allows local hosts to construct false broadcast ports causing inter-host communication anomalies. | [email protected] | 6.2 | 0.24% | 2024-11-01 | 2025-05-27 |
| CVE-2018-1000163 | Floodlight version 1.2 and earlier contains a Cross Site Scripting (XSS) vulnerability in the web console that can result in javascript injections into the web page. This attack appears to be exploitable via the victim browsing the web console. | [email protected] | 6.1 | 0.69% | 2018-04-18 | 2024-11-21 |