CVE-2015-1857

5.3MEDIUM

Key Information:

Vendor: Linux
Status: Opendaylight
Vendor: CVE Published:; 27 April 2018

Summary

The odl-mdsal-apidocs feature in OpenDaylight Helium allow remote attackers to obtain sensitive information by leveraging missing AAA restrictions.

References

https://git.opendaylight.org/gerrit/#/c/17709/

x_refsource_CONFIRM

https://wiki.opendaylight.org/view/Security_Advisories

x_refsource_CONFIRM

https://cloudrouter.org/security/

x_refsource_CONFIRM

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

Low

Integrity:

None

Availability:

Low

Attack Vector:

Network

Attack Complexity:

Low

Privileges Required:

None

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Apr 27, 2018
Vulnerability Reserved
Feb 17, 2015

.