Vulnerabilities > Linuxfoundation > Medium

DATE CVE VULNERABILITY TITLE RISK
2019-09-08 CVE-2019-16097 Missing Authorization vulnerability in Linuxfoundation Harbor
core/api/user.go in Harbor 1.7.0 through 1.8.2 allows non-admin users to create admin accounts via the POST /api/users API, when Harbor is setup with DB as authentication backend and allow user to do self-registration.
network
low complexity
linuxfoundation CWE-862
6.5
6.5
2019-07-18 CVE-2019-1010252 Improper Input Validation vulnerability in Linuxfoundation Open Network Operating System
The Linux Foundation ONOS 2.0.0 and earlier is affected by: Poor Input-validation.
network
low complexity
linuxfoundation CWE-20
4.9
4.9
2019-07-18 CVE-2019-1010250 Improper Input Validation vulnerability in Linuxfoundation Open Network Operating System
The Linux Foundation ONOS 2.0.0 and earlier is affected by: Poor Input-validation.
network
low complexity
linuxfoundation CWE-20
4.9
4.9
2019-07-18 CVE-2019-1010249 Integer Overflow or Wraparound vulnerability in Linuxfoundation Open Network Operating System
The Linux Foundation ONOS 2.0.0 and earlier is affected by: Integer Overflow.
network
low complexity
linuxfoundation CWE-190
4.9
4.9
2018-04-27 CVE-2015-1857 Information Exposure vulnerability in Linuxfoundation Opendaylight
The odl-mdsal-apidocs feature in OpenDaylight Helium allow remote attackers to obtain sensitive information by leveraging missing AAA restrictions.
network
low complexity
linuxfoundation CWE-200
5.3
5.3