This page lists publicly disclosed CVE vulnerabilities affecting projectfloodlight floodlight (linked via NVD CPE). Each row includes severity scores, summaries, and publication dates to help identify and analyze security issues.
| CVE | Summary | Source | Max CVSS | EPSS % | Published | Updated |
|---|---|---|---|---|---|---|
| CVE-2024-57673 | An issue in floodlight v1.2 allows a local attacker to cause a denial of service via the Topology Manager module and Linkdiscovery module | [email protected] | 5.5 | 0.16% | 2025-02-06 | 2025-04-23 |
| CVE-2024-57672 | An issue in floodlight v1.2 allows a local attacker to cause a denial of service via the Topology Manager module, Topologylnstance module, Routing module. | [email protected] | 5.5 | 0.13% | 2025-02-06 | 2025-04-23 |
| CVE-2024-51407 | Floodlight SDN OpenFlow Controller v.1.2 has an issue that allows local hosts to construct false broadcast ports causing inter-host communication anomalies. | [email protected] | 6.2 | 0.24% | 2024-11-01 | 2025-05-27 |
| CVE-2018-1000163 | Floodlight version 1.2 and earlier contains a Cross Site Scripting (XSS) vulnerability in the web console that can result in javascript injections into the web page. This attack appears to be exploitable via the victim browsing the web console. | [email protected] | 6.1 | 0.69% | 2018-04-18 | 2024-11-21 |