← Back

Floodlight

floodlight

Vendor: Projectfloodlight • 4 CVEs

CVEs (4)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-57673
1Projectfloodlight
1Floodlight
Apr 23, 2025
Feb 6, 2025
N/A· v4
5.5 MEDIUM· v3
N/A· v2
An issue in floodlight v1.2 allows a local attacker to cause a denial of service via the Topology Manager module and Linkdiscovery module
CVE-2024-57672
1Projectfloodlight
1Floodlight
Apr 23, 2025
Feb 6, 2025
N/A· v4
5.5 MEDIUM· v3
N/A· v2
An issue in floodlight v1.2 allows a local attacker to cause a denial of service via the Topology Manager module, Topologylnstance module, Routing module.
CVE-2024-51407
1Projectfloodlight
1Floodlight
May 27, 2025
Nov 1, 2024
N/A· v4
6.2 MEDIUM· v3
N/A· v2
Floodlight SDN OpenFlow Controller v.1.2 has an issue that allows local hosts to construct false broadcast ports causing inter-host communication anomalies.
CVE-2018-1000163
1Projectfloodlight
1Floodlight
Nov 21, 2024
Apr 18, 2018
N/A· v4
6.1 MEDIUM· v3
4.3 MEDIUM· v2
Floodlight version 1.2 and earlier contains a Cross Site Scripting (XSS) vulnerability in the web console that can result in javascript injections into the web page. This attack appears to be exploitable via the victim b...Show more
Floodlight version 1.2 and earlier contains a Cross Site Scripting (XSS) vulnerability in the web console that can result in javascript injections into the web page. This attack appears to be exploitable via the victim browsing the web console.Show less