Openvswitch
Approved changes feed: RSS · Atom
cpe:2.3:a:n/a:openvswitch:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | N/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78) |
|---|---|
| Product | Openvswitch (8d46c6be-126d-5a5f-a787-3b7fefa78efa) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2023-5366 |
vulnerable | 2026-06-08 06:19:43.391332 |
Openvswitch don't match packets on nd_target field
HIGH (7.1)
A flaw was found in Open vSwitch that allows ICMPv6 Neighbor Advertisement packets between virtual machines to bypass OpenFlow rules. This issue may allow a local attacker to create specially crafted packets with a modified or spoofed target IP address field that can redirect ICMPv6 traffic to arbitrary IP addresses.
Published: 2023-10-06T17:43:34.376Z
Updated: 2025-02-13T17:20:09.786Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-3966 |
not_vulnerable | 2026-06-08 06:09:40.906569 |
Openvswsitch: ovs-vswitch fails to recover after malformed geneve metadata packet
HIGH (7.5)
A flaw was found in Open vSwitch where multiple versions are vulnerable to crafted Geneve packets, which may result in a denial of service and invalid memory accesses. Triggering this issue requires that hardware offloading via the netlink path is enabled.
Published: 2024-02-22T12:15:53.128Z
Updated: 2025-02-13T17:03:14.623Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-1668 |
vulnerable | 2026-06-08 05:52:36.481780 |
Details available
A flaw was found in openvswitch (OVS). When processing an IP packet with protocol 0, OVS will install the datapath flow without the action modifying the IP header. This issue results (for both kernel and userspace datapath) in installing a datapath flow matching all IP protocols (nw_proto is wildcarded) for this flow, but with an incorrect action, possibly causing incorrect handling of other IP packets with a != 0 IP protocol that matches this dp flow.
Published: 2023-04-10T00:00:00.000Z
Updated: 2025-04-23T16:22:48.998Z Reference links
|
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-4338 |
vulnerable | 2026-06-08 05:51:37.248370 |
Details available
An integer underflow in Organization Specific TLV was found in various versions of OpenvSwitch.
Published: 2023-01-10T00:00:00.000Z
Updated: 2024-08-03T01:34:50.066Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2022-4337 |
vulnerable | 2026-06-08 05:51:37.246800 |
Details available
An out-of-bounds read in Organization Specific TLV was found in various versions of OpenvSwitch.
Published: 2023-01-10T00:00:00.000Z
Updated: 2024-08-03T01:34:50.070Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2020-35498 |
vulnerable | 2026-06-08 05:25:01.203325 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.