CVE-2017-9265 in vSwitchinfo

Summary

In Open vSwitch (OvS) v2.7.0, there is a buffer over-read while parsing the group mod OpenFlow message sent from the controller in `lib/ofp-util.c` in the function `ofputil_pull_ofp15_group_mod`.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

05/28/2017

Disclosure

05/29/2017

Moderation

VulDB entry created

Entries

1: VDB-101837

CPE

ready

CWE

CWE-119 (Confirmed)

CVSS

8.5

EPSS

0.01417

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2017-9265
NVD	https://nvd.nist.gov/vuln/detail/CVE-2017-9265
CVE Details	https://www.cvedetails.com/cve/CVE-2017-9265/

◂ Previous Overview Next ▸

Want to know what is going to be exploited?

We predict KEV entries!