CVE-2015-1778

The custom authentication realm used by karaf-tomcat's "opendaylight" realm in Opendaylight before Helium SR3 will authenticate any username and password combination. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt