Approved changes feed: RSS · Atom

cpe:2.3:a:opendaylight:sdninterfaceapp:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorOpendaylight (4bdd606a-1706-5512-973c-ee8792d90bfd)
ProductSdninterfaceapp (10da8458-ba95-5109-8453-c20829aa5e90)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from purl2cpe mapping

PURL mappings

PURLSourceLast updated
pkg:github/opendaylight/sdninterfaceapp purl2cpe 2026-06-01 10:16:18.764278

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2018-1132 vulnerable 2026-06-08 05:11:17.022962 Details available
HIGH (7.5)
A flaw was found in Opendaylight's SDNInterfaceapp (SDNI). Attackers can SQL inject the component's database (SQLite) without authenticating to the controller or SDNInterfaceapp. SDNInterface has been deprecated in OpenDayLight since it was last used in the final Carbon series release. In addition to the component not being included in OpenDayLight in newer releases, the SDNInterface component is not packaged in the opendaylight package included in RHEL.
Published: 2018-06-20T13:00:00.000Z
Updated: 2024-08-05T03:51:48.839Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.