CVE-2024-48809
CVSS 3.1 Score 7.5 of 10 (high)
Details
Summary
CVE-2024-48809 is a newly disclosed vulnerability affecting Open Networking Foundation's sdran-in-a-box version 1.4.3 and onos-a1t version 0.2.3. This issue enables a remote attacker to trigger a denial of service (DoS) attack by manipulating the DeleteWatcher function within the onos-a1t component of the sdran-in-a-box software. By exploiting this weakness, an attacker can cause the system to become unresponsive, causing significant disruptions and potential downtime for organizations using these Open Networking Foundation tools. It is crucial for affected organizations to apply the necessary patches to mitigate this risk and prevent potential attacks.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.