Onap

Open Network Automation Platform

21 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2019-12123

Exploit
  • EPSS 0.67%
  • Veröffentlicht 18.03.2020 19:15:14
  • Zuletzt bearbeitet 21.11.2024 04:22:15

An issue was discovered in ONAP SDNC before Dublin. By executing sla/printAsXml with a crafted module parameter, an authenticated user can execute an arbitrary command. All SDC setups that include admportal are affected.

9.8

CVE-2019-12112

Exploit
  • EPSS 1.67%
  • Veröffentlicht 18.03.2020 19:15:14
  • Zuletzt bearbeitet 21.11.2024 04:22:13

An issue was discovered in ONAP SDNC before Dublin. By executing sla/upload with a crafted filename parameter, an unauthenticated attacker can execute an arbitrary command. All SDC setups that include admportal are affected.

7.5

CVE-2019-12121

Exploit
  • EPSS 0.19%
  • Veröffentlicht 18.03.2020 19:15:14
  • Zuletzt bearbeitet 21.11.2024 04:22:14

An issue was detected in ONAP Portal through Dublin. By executing a padding oracle attack using the ONAPPORTAL/processSingleSignOn UserId field, an attacker is able to decrypt arbitrary information encrypted with the same symmetric key as UserId. All...

9.8

CVE-2019-12120

Exploit
  • EPSS 1.15%
  • Veröffentlicht 18.03.2020 19:15:14
  • Zuletzt bearbeitet 21.11.2024 04:22:14

An issue was discovered in ONAP VNFSDK through Dublin. By accessing port 8000 of demo-vnfsdk-vnfsdk, an unauthenticated attacker (who already has access to pod-to-pod communication) may execute arbitrary code inside that pod. All ONAP Operations Mana...

9.8

CVE-2019-12119

Exploit
  • EPSS 1.15%
  • Veröffentlicht 18.03.2020 19:15:14
  • Zuletzt bearbeitet 21.11.2024 04:22:14

An issue was discovered in ONAP SDC through Dublin. By accessing port 7000 of demo-sdc-sdc-wfd-fe pod, an unauthenticated attacker (who already has access to pod-to-pod communication) may execute arbitrary code inside that pod. All ONAP Operations Ma...

9.8

CVE-2019-12118

Exploit
  • EPSS 1.15%
  • Veröffentlicht 18.03.2020 19:15:14
  • Zuletzt bearbeitet 21.11.2024 04:22:14

An issue was discovered in ONAP SDC through Dublin. By accessing port 7001 of demo-sdc-sdc-wfd-be pod, an unauthenticated attacker (who already has access to pod-to-pod communication) may execute arbitrary code inside that pod. All ONAP Operations Ma...

9.8

CVE-2019-12117

Exploit
  • EPSS 1.15%
  • Veröffentlicht 18.03.2020 19:15:14
  • Zuletzt bearbeitet 21.11.2024 04:22:14

An issue was discovered in ONAP SDC through Dublin. By accessing port 4001 of demo-sdc-sdc-onboarding-be pod, an unauthenticated attacker (who already has access to pod-to-pod communication) may execute arbitrary code inside that pod. All ONAP Operat...

9.8

CVE-2019-12116

Exploit
  • EPSS 1.15%
  • Veröffentlicht 18.03.2020 19:15:14
  • Zuletzt bearbeitet 21.11.2024 04:22:14

An issue was discovered in ONAP SDC through Dublin. By accessing port 6000 of demo-sdc-sdc-fe pod, an unauthenticated attacker (who already has access to pod-to-pod communication) may execute arbitrary code inside that pod. All ONAP Operations Manage...

9.8

CVE-2019-12115

Exploit
  • EPSS 1.15%
  • Veröffentlicht 18.03.2020 19:15:14
  • Zuletzt bearbeitet 21.11.2024 04:22:14

An issue was discovered in ONAP SDC through Dublin. By accessing port 4000 of demo-sdc-sdc-be pod, an unauthenticated attacker (who already has access to pod-to-pod communication) may execute arbitrary code inside that pod. All ONAP Operations Manage...

9.8

CVE-2019-12114

Exploit
  • EPSS 1.15%
  • Veröffentlicht 18.03.2020 19:15:14
  • Zuletzt bearbeitet 21.11.2024 04:22:13

An issue was discovered in ONAP HOLMES before Dublin. By accessing port 9202 of dep-holmes-engine-mgmt pod, an unauthenticated attacker (who already has access to pod-to-pod communication) may execute arbitrary code inside that pod. All ONAP Operatio...