CVE-2024-28732

HIGH7.5EPSS 2.2%

Ryu Infinite Loop vulnerability

Published: 4/8/2024Modified: 4/10/2024

Description

An issue was discovered in OFPMatch in parser.py in Faucet SDN Ryu version 4.34, allows remote attackers to cause a denial of service (DoS) (infinite loop).

Affected packages (1)

PyPI/ryufrom 0, <= 4.34

CVSS scores

Source	Version	Severity	Vector
osv	CVSS 3.1	HIGH7.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H

References (4)

ADVISORYhttps://nvd.nist.gov/vuln/detail/CVE-2024-28732
PATCHhttps://github.com/faucetsdn/ryu
WEBhttps://gist.github.com/ErodedElk/1133d64dde2d92393a065edc9b243792
WEBhttps://github.com/faucetsdn/ryu/issues/188