Time-of-check to time-of-use (TOCTOU) race condition in org.onosproject.acl (aka the access control application) in ONOS v1.13 and earlier allows attackers to bypass network access control via data plane packet injection.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2018-07-05T18:00:00
Updated: 2024-08-05T08:45:00.678Z
Reserved: 2018-06-23T00:00:00
Link: CVE-2018-12691
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2018-07-05T18:29:00.360
Modified: 2018-09-04T15:59:02.397
Link: CVE-2018-12691
Redhat
No data.