CVE-2025-29311

High CVSS: 7.5

Limited secret space in LLDP packets used in onos v2.7.0 allows attackers to obtain the private key via a bruteforce attack. Attackers are able to leverage this vulnerability into creating crafted LLDP packets.

Vendor

Opennetworking

Product

Onos

CWE

CWE-331

Yayın Tarihi

2025-03-24 21:15:18

Güncelleme

2025-04-01 19:49:34

Source Identifier

cve@mitre.org

KEV Date Added

Kategoriler

CWE-331 Onos HIGH Opennetworking 2025

Referanslar

https://gist.github.com/Saber-Berserker/790f2a75ae482df3fd0fce569f30504a;

Benzer Kayıtlar

High

CVE-2025-65565

A denial-of-service vulnerability exists in the omec-project UPF (pfcpiface component) in version upf-epc-pfcpiface:2.1.…

High

CVE-2025-65567

A denial-of-service vulnerability exists in the omec-project UPF (pfcpiface component) in version upf-epc-pfcpiface:2.1.…

High

CVE-2025-65568

A denial-of-service vulnerability exists in the omec-project UPF (pfcpiface component) in version upf-epc-pfcpiface:2.1.…

High

CVE-2025-65563

A denial-of-service vulnerability exists in the omec-project UPF (component upf-epc/pfcpiface) up to at least version up…

High

CVE-2025-65564

A denial-of-service vulnerability exists in the omec-upf (upf-epc-pfcpiface) in version upf-epc-pfcpiface:2.1.3-dev. Whe…

Critical

CVE-2023-41591

An issue in Open Network Foundation ONOS v2.7.0 allows attackers to create fake IP/MAC addresses and potentially execute…