How severe is CVE-2025-29312?

CVE-2025-29312 has a CVSS v3 score of 9.1 (CRITICAL).

CVE-2025-29312

Name: onos
Author: opennetworking

9.1CRITICAL

An issue in onos v2.7.0 allows attackers to trigger unexpected behavior within a device connected to a legacy switch via changing the link type from indirect to direct.

Published: 3/24/2025Updated: 4/1/2025

Description

An issue in onos v2.7.0 allows attackers to trigger unexpected behavior within a device connected to a legacy switch via changing the link type from indirect to direct.

AI AnalysisPowered by AI

Affected Products

opennetworkingonos

2.7.0

References

https://gist.github.com/Saber-Berserker/4e54c2aa70abab2b133ce2c2b7e91249
Exploit
https://gist.github.com/Saber-Berserker/4e54c2aa70abab2b133ce2c2b7e91249
Exploit