GHSA-46hr-3cq3-mcgp
Suggest an improvement- Source
- https://github.com/advisories/GHSA-46hr-3cq3-mcgp
- Import Source
- https://github.com/github/advisory-database/blob/main/advisories/github-reviewed/2024/09/GHSA-46hr-3cq3-mcgp/GHSA-46hr-3cq3-mcgp.json
- JSON Data
- https://api.osv.dev/v1/vulns/GHSA-46hr-3cq3-mcgp
- Aliases
-
- CVE-2024-46943
- Published
- 2024-09-16T14:37:28Z
- Modified
- 2024-09-17T21:23:04.311758Z
- Severity
-
- 4.3 (Medium) CVSS_V3 - CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N CVSS Calculator
- 5.3 (Medium) CVSS_V4 - CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N CVSS Calculator
- Summary
- OpenDaylight Authentication, Authorization and Accounting (AAA) peer impersonation vulnerability
- Details
-
An issue was discovered in OpenDaylight Authentication, Authorization and Accounting (AAA) through 0.19.3. A rogue controller can join a cluster to impersonate an offline peer, even if this rogue controller does not possess the complete cluster configuration information.
- Database specific
{ "nvd_published_at": "2024-09-15T23:15:11Z", "cwe_ids": [ "CWE-285", "CWE-287", "CWE-520" ], "severity": "MODERATE", "github_reviewed": true, "github_reviewed_at": "2024-09-16T20:16:16Z" }- References
Affected packages
Maven / org.opendaylight.aaa:aaa-artifacts
Package
- Name
- org.opendaylight.aaa:aaa-artifacts
- View open source insights on deps.dev
- Purl
- pkg:maven/org.opendaylight.aaa/aaa-artifacts
Affected ranges
- Type
- ECOSYSTEM
- Events
-
Introduced0Unknown introduced version / All previous versions are affectedLast affected0.19.3
Affected versions
0.*
0.3.0-Beryllium
0.3.1-Beryllium-SR1
0.3.2-Beryllium-SR2
0.3.3-Beryllium-SR3
0.3.4-Beryllium-SR4
0.4.0-Boron
0.4.1-Boron-SR1
0.4.2-Boron-SR2
0.4.3-Boron-SR3
0.4.4-Boron-SR4
0.5.0-Carbon
0.5.1-Carbon
0.5.2-Carbon
0.5.3-Carbon
0.5.4-Carbon
0.6.0
0.6.1
0.6.2
0.6.3
0.7.0
0.7.1
0.7.2
0.7.3
0.7.4
0.8.0
0.8.1
0.8.2
0.8.3
0.9.0
0.9.1
0.9.2
0.9.3
0.10.0
0.10.1
0.10.2
0.10.3
0.10.4
0.11.0
0.11.1
0.11.2
0.11.3
0.12.0
0.12.1
0.12.2
0.12.3
0.12.4
0.13.0
0.13.1
0.13.2
0.13.3
0.13.4
0.13.5
0.13.6
0.13.7
0.13.8
0.13.9
0.13.10
0.13.11
0.14.0
0.14.1
0.14.2
0.14.3
0.14.4
0.14.5
0.14.6
0.14.7
0.14.8
0.14.9
0.14.10
0.14.11
0.14.12
0.14.13
0.14.14
0.15.0
0.15.1
0.15.2
0.15.3
0.15.4
0.15.5
0.15.6
0.15.7
0.15.8
0.15.9
0.16.0
0.16.1
0.16.2
0.16.3
0.16.4
0.16.5
0.16.6
0.16.7
0.16.8
0.16.9
0.16.10
0.16.11
0.17.0
0.17.1
0.17.2
0.17.3
0.17.4
0.17.5
0.17.6
0.17.7
0.17.8
0.17.9
0.17.10
0.17.11
0.17.12
0.17.13
0.17.14
0.17.15
0.17.16
0.18.0
0.18.1
0.18.2
0.18.3
0.18.4
0.18.5
0.18.6
0.19.0
0.19.1
0.19.2
0.19.3