OpenDayLight: Password change doesn't result in Karaf clearing cache, allowing old password to still be used (CVE-2017-1000406) http://www.openwall.com/lists/oss-security/2017/11/23/4 https://jira.opendaylight.org/browse/AAA-151
Acknowledgments: Name: Vaibhav Hemant Dixit (Arizona State University)