CRITICAL🇵🇱 Wersja polska

CVE-2023-41591

CVSS 9.8v3.1pub. 2025-05-29upd. 2025-06-03

An issue in Open Network Foundation ONOS v2.7.0 allows attackers to create fake IP/MAC addresses and potentially execute a man-in-the-middle attack on communications between fake and real hosts.

🤖 AI Analysis
How it works

The vulnerability is based on an authentication bypass mechanism through spoofing (CWE-290) — the ONOS system does not sufficiently verify the authenticity of IP and MAC addresses reported by hosts. An attacker can register false IP/MAC address pairs in the SDN controller without any authentication. This allows the attacker to inject crafted network topology information into the ONOS system, which enables interception of network traffic between victims.

Impact

An attacker can take control over network traffic flow and conduct a man-in-the-middle attack, enabling interception, modification, or injection of communication between hosts in the managed SDN network. As a result, it is possible to compromise the confidentiality, integrity, and availability of data transmitted over the network.

Mitigation & patch

Apply patches available from the vendor according to the references. It is also recommended to implement additional mechanisms for verifying host identity in the SDN network and restrict access to the ONOS controller API only to trusted network segments.

Who is affected

Open Network Foundation ONOS version 2.7.0

Analysis generated by Claude AI (Anthropic) based on NVD data. Always verify with vendor.
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
  • Opennetworking Onos

    APP
    Opennetworking
    2.7.0
🔵
CHECK WITH VENDOR
No clear patch data available. Check vendor references.
CWE
References

Related vulnerabilities

CVE-2025-29310CRITICAL9.8PL ✓ten sam produkt

Niebezpieczna deserializacja pakietów LLDP w ONOS v2.7.0 (RCE)

CVE-2025-29312CRITICAL9.1PL ✓ten sam produkt

ONOS v2.7.0 – manipulacja typem łącza powoduje nieoczekiwane zachowanie urządzeń sieciowych

CVE-2022-29604CRITICAL9.8ten sam produkt

An issue was discovered in ONOS 2.5.1. An intent with an uppercase letter in a device ID shows the CORRUPT sta...

CVE-2022-29606CRITICAL9.8ten sam produkt

An issue was discovered in ONOS 2.5.1. An intent with a large port number shows the CORRUPT state, which is mi...

CVE-2025-29311HIGH7.5ten sam produkt

Limited secret space in LLDP packets used in onos v2.7.0 allows attackers to obtain the private key via a brut...