An issue was discovered in ONOS 2.5.1. There is an incorrect comparison of flow rules installed by intents. A remote attacker can install or remove a new intent, and consequently modify or delete the existing flow rules related to other intents.
{ "source": "CPE_STRING", "extracted_events": [ { "introduced": "2.5.1" }, { "last_affected": "2.5.1" } ], "cpe": "cpe:2.3:a:opennetworking:onos:2.5.1:*:*:*:*:*:*:*" }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2021-38364.json"