An issue in Open Network Foundation ONOS v2.7.0 allows attackers to create fake IP/MAC addresses and potentially execute a man-in-the-middle attack on communications between fake and real hosts.
The vulnerability is based on an authentication bypass mechanism through spoofing (CWE-290) — the ONOS system does not sufficiently verify the authenticity of IP and MAC addresses reported by hosts. An attacker can register false IP/MAC address pairs in the SDN controller without any authentication. This allows the attacker to inject crafted network topology information into the ONOS system, which enables interception of network traffic between victims.
An attacker can take control over network traffic flow and conduct a man-in-the-middle attack, enabling interception, modification, or injection of communication between hosts in the managed SDN network. As a result, it is possible to compromise the confidentiality, integrity, and availability of data transmitted over the network.
Apply patches available from the vendor according to the references. It is also recommended to implement additional mechanisms for verifying host identity in the SDN network and restrict access to the ONOS controller API only to trusted network segments.
Open Network Foundation ONOS version 2.7.0
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HOpennetworking Onos
APPOpennetworking2.7.0
Related vulnerabilities
Niebezpieczna deserializacja pakietów LLDP w ONOS v2.7.0 (RCE)
ONOS v2.7.0 – manipulacja typem łącza powoduje nieoczekiwane zachowanie urządzeń sieciowych
An issue was discovered in ONOS 2.5.1. An intent with an uppercase letter in a device ID shows the CORRUPT sta...
An issue was discovered in ONOS 2.5.1. An intent with a large port number shows the CORRUPT state, which is mi...
Limited secret space in LLDP packets used in onos v2.7.0 allows attackers to obtain the private key via a brut...