Vulnerabilities > Missing Authentication for Critical Function
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-19 | CVE-2019-15654 | Missing Authentication for Critical Function vulnerability in Comba Ac2400 Firmware Comba AC2400 devices are prone to password disclosure via a simple crafted /09/business/upgrade/upcfgAction.php?download=true request to the web management server. | 7.5 |
| 2020-03-19 | CVE-2019-12127 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform In ONAP OOM through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 9.8 |
| 2020-03-19 | CVE-2019-12126 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform In ONAP DCAE through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 9.8 |
| 2020-03-19 | CVE-2019-12125 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform In ONAP Logging through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 9.8 |
| 2020-03-19 | CVE-2019-12130 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform In ONAP CLI through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 9.8 |
| 2020-03-19 | CVE-2019-12129 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform In ONAP MSB through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 9.8 |
| 2020-03-19 | CVE-2019-12128 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform In ONAP SO through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 9.8 |
| 2020-03-18 | CVE-2019-12120 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform An issue was discovered in ONAP VNFSDK through Dublin. | 9.8 |
| 2020-03-18 | CVE-2019-12119 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform An issue was discovered in ONAP SDC through Dublin. | 9.8 |
| 2020-03-18 | CVE-2019-12118 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform An issue was discovered in ONAP SDC through Dublin. | 9.8 |