Browse all 37 CVE security advisories affecting Open Networking Foundation (ONF). AI-powered Chinese analysis, POCs, and references for each vulnerability.
The Open Networking Foundation (ONF) is a non-profit consortium dedicated to advancing open, programmable networking through standards like OpenFlow and ONOS. Its primary objective involves defining architectures for software-defined networking (SDN) and network function virtualization (NFV), enabling telecom operators to decouple hardware from software. Security assessments have identified 37 Common Vulnerabilities and Exposures (CVEs) associated with ONF-related projects, predominantly affecting the ONOS network operating system. Historically, these vulnerabilities frequently manifest as remote code execution (RCE) and privilege escalation flaws, often stemming from insufficient input validation in REST APIs or improper access controls within the controller’s core modules. While no single catastrophic public breach has defined the organization’s history, the accumulation of these CVEs highlights persistent challenges in securing complex, distributed control planes. The ONF continues to address these issues through rigorous code reviews and security patches, aiming to stabilize the foundational software used by global infrastructure providers.
This page lists every published CVE security advisory associated with Open Networking Foundation (ONF). Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.