CPE-E6F0E445-47EA-4D25-9591-35B6F524C40E Detail

CPE Details

Open vSwitch 2.3.0

Vendor

openvswitch

Product

openvswitch

Version

2.3.0

Created

2019-06-19
22h07 +00:00

Modified

2019-06-19
22h07 +00:00

Official links

CPE NVD

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Notifications manage

List of Notifications

Alerte pour un CPE

Stay informed of any changes for a specific CPE.

Parameters

You can specify a title that will be retrieved in the alerts that will be sent out.

CPE ID

Planning

Month

Next run calculation

Day

Weekday

Hour

Minute

Creation date

Last execution

Next execution

Functionality requiring a connection

This feature, which allows you to receive alerts, is only active when you are logged into your account.

CPE Name: cpe:2.3:a:openvswitch:openvswitch:2.3.0:::::::*

Informations

Vendor

openvswitch

Product

openvswitch

Version

2.3.0

Related CVE

Open and find in CVE List

CVE ID	Published	Description	Score	Severity
CVE-2023-5366	2023-10-06 17h43 +00:00	A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow a local attacker to create specially crafted packets with a modified or spoofed target IP address field that can redirect ICMPv6 traffic to arbitrary IP addresses.	7.1	High
CVE-2022-4337	2023-01-09 23h00 +00:00	An out-of-bounds read in Organization Specific TLV was found in various versions of OpenvSwitch.	9.8	Critical
CVE-2022-4338	2023-01-09 23h00 +00:00	An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch.	9.8	Critical
CVE-2019-25076	2022-09-08 20h08 +00:00	The TSS (Tuple Space Search) algorithm in Open vSwitch 2.x through 2.17.2 and 3.0.0 allows remote attackers to cause a denial of service (delays of legitimate traffic) via crafted packet data that requires excessive evaluation time within the packet classification algorithm for the MegaFlow cache, aka a Tuple Space Explosion (TSE) attack.	5.8	Medium
CVE-2021-3905	2022-08-22 22h00 +00:00	A memory leak was found in Open vSwitch (OVS) during userspace IP fragmentation processing. An attacker could use this flaw to potentially exhaust available memory by keeping sending packet fragments.	7.5	High
CVE-2017-14970	2017-10-01 18h00 +00:00	In lib/ofp-util.c in Open vSwitch (OvS) before 2.8.1, there are multiple memory leaks while parsing malformed OpenFlow group mod messages. NOTE: the vendor disputes the relevance of this report, stating "it can only be triggered by an OpenFlow controller, but OpenFlow controllers have much more direct and powerful ways to force Open vSwitch to allocate memory, such as by inserting flows into the flow table."	5.9	Medium
CVE-2016-2074	2016-07-03 19h00 +00:00	Buffer overflow in lib/flow.c in ovs-vswitchd in Open vSwitch 2.2.x and 2.3.x before 2.3.3 and 2.4.x before 2.4.1 allows remote attackers to execute arbitrary code via crafted MPLS packets, as demonstrated by a long string in an ovs-appctl command.	9.8	Critical

Open vSwitch 2.3.0

CPE Details

CPE Name: cpe:2.3:a:openvswitch:openvswitch:2.3.0:*:*:*:*:*:*:*

Informations

Vendor

Product

Version

Related CVE

CPE Name: cpe:2.3:a:openvswitch:openvswitch:2.3.0:::::::*