pkg:maven/io.atomix/atomix
Type
maven
Namespace
io.atomix
Name
atomix
Known advisories, vulnerabilities and fixes for io.atomix/atomix package.
High
4
Moderate
3
Type | Version | Distribution | # CVEs | # Advisory ID | Title | Severity | Published |
---|---|---|---|---|---|---|---|
Affected | <= 3.1.5 |
CVE-2020-35213
|
MAVEN:GHSA-2FQW-684C-PVP7 | An issue in Atomix v3.1.5 allows attackers to cause a denial of service (DoS) via false link event messages sent to a master ONOS node. | high |
2021-12-17T20:40:50
(2 years ago) |
|
Affected | <= 3.1.5 |
CVE-2020-35211
|
MAVEN:GHSA-4JHC-WJR3-PWH2 | An issue in Atomix v3.1.5 allows unauthorized Atomix nodes to become the lead node. | high |
2021-12-17T20:40:38
(2 years ago) |
|
Affected | <= 3.1.5 |
CVE-2020-35216
|
MAVEN:GHSA-6VVH-5794-VPMJ | An issue in Atomix v3.1.5 allows attackers to cause a denial of service (DoS) via false member down event messages. | moderate |
2021-12-17T20:40:58
(2 years ago) |
|
Affected | <= 3.1.5 |
CVE-2020-35209
|
MAVEN:GHSA-7FR2-94H7-CCG2 | An issue in Atomix v3.1.5 allows unauthorized Atomix nodes to join a target cluster via providing configuration information. | high |
2021-12-17T20:41:33
(2 years ago) |
|
Affected | <= 3.1.5 |
CVE-2020-35215
|
MAVEN:GHSA-G7P8-R2CH-4RMF | Malicious Atomix node queries expose sensitive information | moderate |
2021-12-17T20:41:45
(2 years ago) |
|
Affected | <= 3.1.5 |
CVE-2020-35214
|
MAVEN:GHSA-M4H3-7MC2-V295 | An issue in Atomix v3.1.5 allows a malicious Atomix node to remove states of ONOS storage via abuse of primitive operations. | high |
2021-12-17T20:41:21
(2 years ago) |
|
Affected | <= 3.1.5 |
CVE-2020-35210
|
MAVEN:GHSA-MF27-WG66-M8F5 | A vulnerability in Atomix v3.1.5 allows attackers to cause a denial of service (DoS) via a Raft session flooding attack using Raft OpenSessionRequest messages. | moderate |
2021-12-17T20:41:09
(2 years ago) |