CVE-2019-1010234

Summary

The Linux Foundation ONOS 1.15.0 and ealier is affected by: Improper Input Validation. The impact is: The attacker can remotely execute any commands by sending malicious http request to the controller. The component is: Method runJavaCompiler in YangLiveCompilerManager.java. The attack vector is: network connectivity.

Affected Software

VendorProductVersion RangeStatus
The Linux FoundationONOS1.15.0 and ealieraffected

Weaknesses

  • Improper Input Validation

ADP Enrichment

CVE Program Container

Additional References

References