opendaylight vulnerabilities

Direct Vulnerabilities

Known vulnerabilities in the opendaylight package. This does not include vulnerabilities belonging to this package’s dependencies.

Fix vulnerabilities automatically

Snyk's AI Trust Platform automatically finds the best upgrade path and integrates with your development workflows. Secure your code at zero cost.

Fix for free

Vulnerability	Vulnerable Version
M Improper Validation of Syntactic Correctness of Input	*
M Improper Validation of Syntactic Correctness of Input	*
H Arbitrary Code Injection	*
M Resource Exhaustion	*
H Incorrect Authorization	*
M SQL Injection	*
M SQL Injection	*
M Resource Exhaustion	*
M SQL Injection	*
M Resource Exhaustion	*
M Cross-site Request Forgery (CSRF)	*
M Resource Exhaustion	*
M Race Condition	*
M Resource Exhaustion	*
H Deserialization of Untrusted Data	*
M Information Exposure	*
M Information Exposure	*
L Improper Authentication	*
L Improper Authentication	*
L Authentication Bypass by Primary Weakness	*
L Authentication Bypass by Primary Weakness	*
M Improper Authorization	*
M Resource Exhaustion	*
L Improper Authentication	*
L Improper Authentication	*
L Authentication Bypass	*
L Authentication Bypass	*
M Server-Side Request Forgery (SSRF)	*
M Server-Side Request Forgery (SSRF)	*
M Resource Exhaustion	*
M Resource Exhaustion	*
L Authentication Bypass by Primary Weakness	*
L Authentication Bypass by Primary Weakness	*
M Improper Input Validation	*
M Improper Input Validation	*
H OS Command Injection	*
H OS Command Injection	*
H OS Command Injection	*
M Improper Authorization	*
M Improper Authorization	*
H Authentication Bypass by Primary Weakness	*
H Authentication Bypass by Primary Weakness	*
L Use of Insufficiently Random Values	*
L Use of Insufficiently Random Values	*
M Information Exposure	*
M Information Exposure	*
M Information Exposure	*
M Information Exposure	*
M Information Exposure	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
M Cross-site Scripting (XSS)	*
L Improper Input Validation	*
L Improper Input Validation	*
L Improper Input Validation	*
L Improper Input Validation	*
L Improper Input Validation	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M Improper Authentication	*
M Improper Authentication	*
M Improper Authentication	*
M Improper Authentication	*
M Missing Authorization	*
M Missing Authorization	*
M Missing Authorization	*
M Missing Authorization	*
M Missing Authorization	*
M LDAP Injection	*
M LDAP Injection	*
M LDAP Injection	*
M LDAP Injection	*
M LDAP Injection	*
L Resource Injection	*
L Resource Injection	*
L Resource Injection	*
L Resource Injection	*
L Cross-site Scripting (XSS)	*
L Cross-site Scripting (XSS)	*
L Cross-site Scripting (XSS)	*
L Cross-site Scripting (XSS)	*
M Improper Authentication	*
M Improper Authentication	*
M Improper Authentication	*
M Improper Authentication	*
M Improper Authentication	*
L Improper Input Validation	*
L Improper Input Validation	*
L Improper Input Validation	*
L Improper Input Validation	*
L Improper Input Validation	*
M XML External Entity (XXE) Injection	*
M XML External Entity (XXE) Injection	*
M XML External Entity (XXE) Injection	*
M XML External Entity (XXE) Injection	*
M XML External Entity (XXE) Injection	*
L Improper Neutralization of Special Elements	*
L Improper Neutralization of Special Elements	*
L Improper Neutralization of Special Elements	*
L Improper Neutralization of Special Elements	*
M Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')	*
M Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')	*
M Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')	*
M Improper Input Validation	*
M Improper Input Validation	*
M Improper Input Validation	*
L Improper Neutralization of Special Elements	*
L Improper Neutralization of Special Elements	*
L Improper Neutralization of Special Elements	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
M XML External Entity (XXE) Injection	*
M XML External Entity (XXE) Injection	*
M XML External Entity (XXE) Injection	*
M XML External Entity (XXE) Injection	*
M XML External Entity (XXE) Injection	*
L Improper Neutralization of Special Elements	*
L Improper Neutralization of Special Elements	*
L Improper Neutralization of Special Elements	*
L Uncaught Exception	*
L Uncaught Exception	*
L Uncaught Exception	*
L Uncaught Exception	*
M Improper Initialization	*
M Improper Initialization	*
M Improper Initialization	*
M Improper Initialization	*
M Improper Initialization	*
M Improper Initialization	*
M SQL Injection	*
M SQL Injection	*
M SQL Injection	*
M Cleartext Transmission of Sensitive Information	*
M Cleartext Transmission of Sensitive Information	*
M Cleartext Transmission of Sensitive Information	*
M Out-of-bounds Read	*
M Out-of-bounds Read	*
M Out-of-bounds Read	*
M Improper Authentication	*
L Improper Authentication	*
M Improper Authentication	*
L Cross-site Scripting (XSS)	*
L Cross-site Scripting (XSS)	*
L Cross-site Scripting (XSS)	*
L Cross-site Scripting (XSS)	*
H Information Exposure	*
H Information Exposure	*
L Incorrect Use of Privileged APIs	*
L Incorrect Use of Privileged APIs	*
L Incorrect Use of Privileged APIs	*
L Incorrect Use of Privileged APIs	*
M XML External Entity (XXE) Injection	*
M XML External Entity (XXE) Injection	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M Resource Exhaustion	*
H Deserialization of Untrusted Data	*
M Unchecked Return Value	*
M Incorrect Authorization	*
M Allocation of Resources Without Limits or Throttling	*
H Resource Exhaustion	*
H Resource Exhaustion	*
M Improper Resource Shutdown or Release	*
M SQL Injection	*
M SQL Injection	*
M Arbitrary Code Injection	*
L Improper Input Validation	*
M Insufficient Resource Pool	*
M HTTP Request Smuggling	*
M HTTP Request Smuggling	*
M HTTP Request Smuggling	*
M HTTP Request Smuggling	*
M HTTP Request Smuggling	*
M HTTP Request Smuggling	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M Resource Exhaustion	*
M Improper Input Validation	*
H Use of Externally-Controlled Input to Select Classes or Code ('Unsafe Reflection')	*
M Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
M Out-of-bounds Write	*
L Incomplete Documentation of Program Execution	*
L Incomplete Documentation of Program Execution	*
M Time-of-check Time-of-use (TOCTOU)	*
M Time-of-check Time-of-use (TOCTOU)	*
H Deserialization of Untrusted Data	*
H SQL Injection	*
M Deserialization of Untrusted Data	*
M Improper Input Validation	*
M Improper Input Validation	*
C Improper Input Validation	*
M HTTP Request Smuggling	*
M HTTP Request Smuggling	*
H Incomplete Cleanup	*
H Incomplete Cleanup	*
L Improper Authentication	*
L Improper Authentication	*
L Information Exposure	*
M Information Exposure	*
M Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
M Incorrect Default Permissions	*
M Incorrect Default Permissions	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
M Static Code Injection	*
H Static Code Injection	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Static Code Injection	*
M Static Code Injection	*
M Static Code Injection	*
H Static Code Injection	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L HTTP Request Smuggling	*
L HTTP Request Smuggling	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
M Integer Overflow or Wraparound	*
M Integer Overflow or Wraparound	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
L Arbitrary Argument Injection	*
L Arbitrary Argument Injection	*
L Arbitrary Argument Injection	*
H Improper Input Validation	*
H Improper Input Validation	*
H Improper Input Validation	*
M Resource Exhaustion	*
M Resource Exhaustion	*
H Missing Release of Resource after Effective Lifetime	*
H Missing Release of Resource after Effective Lifetime	*
H Resource Exhaustion	*
M Resource Exhaustion	*
M Use After Free	*
M Use After Free	*
M Information Exposure	*
M Information Exposure	*
L Directory Traversal	*
M Use of a Broken or Risky Cryptographic Algorithm	*
M Use of a Broken or Risky Cryptographic Algorithm	*
M Use of a Broken or Risky Cryptographic Algorithm	*
M Static Code Injection	*
M Static Code Injection	*
M Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Static Code Injection	*
L Static Code Injection	*
M Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
L HTTP Request Smuggling	*
L HTTP Request Smuggling	*
M Information Exposure	*
M Out-of-Bounds	*
M Out-of-Bounds	*
M Out-of-Bounds	*
M Out-of-Bounds	<0:8.3.0-3.el7ost
M Out-of-Bounds	*
M Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
L Insufficient Session Expiration	*
M OS Command Injection	*
M OS Command Injection	*
M Information Exposure	*
M Resource Exhaustion	*
M Information Exposure	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
M Information Exposure	*
M Information Exposure	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Incorrect Default Permissions	*
L Incorrect Default Permissions	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
M Improper Authorization	*
M Improper Authorization	*
H XML External Entity (XXE) Injection	*
L XML External Entity (XXE) Injection	*
L Static Code Injection	*
L Static Code Injection	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
M Resource Exhaustion	*
M Resource Exhaustion	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
H Resource Exhaustion	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
M Resource Exhaustion	*
M Resource Exhaustion	*
L Static Code Injection	*
L Static Code Injection	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
L Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
M Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*
H Deserialization of Untrusted Data	*

Vulnerability

Vulnerable Version

Improper Validation of Syntactic Correctness of Input