Vulnerabilities > Onap
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-19 | CVE-2019-12127 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform 3.0.0/3.0.1/3.0.2 In ONAP OOM through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 7.5 |
| 2020-03-19 | CVE-2019-12126 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform 3.0.0/3.0.1/3.0.2 In ONAP DCAE through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 7.5 |
| 2020-03-19 | CVE-2019-12125 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform 3.0.0/3.0.1/3.0.2 In ONAP Logging through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 7.5 |
| 2020-03-19 | CVE-2019-12130 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform In ONAP CLI through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 10.0 |
| 2020-03-19 | CVE-2019-12129 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform In ONAP MSB through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 10.0 |
| 2020-03-19 | CVE-2019-12128 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform In ONAP SO through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 10.0 |
| 2020-03-18 | CVE-2019-12132 | OS Command Injection vulnerability in Onap Open Network Automation Platform 3.0.0/3.0.1/3.0.2 An issue was discovered in ONAP SDNC before Dublin. | 7.5 |
| 2020-03-18 | CVE-2019-12131 | Authentication Bypass by Spoofing vulnerability in Onap Open Network Automation Platform 3.0.0/3.0.1/3.0.2 An issue was detected in ONAP APPC through Dublin and SDC through Dublin. | 6.4 |
| 2020-03-18 | CVE-2019-12124 | Unspecified vulnerability in Onap Open Network Automation Platform An issue was discovered in ONAP APPC before Dublin. | 6.4 |
| 2020-03-18 | CVE-2019-12123 | OS Command Injection vulnerability in Onap Open Network Automation Platform 3.0.0/3.0.1/3.0.2 An issue was discovered in ONAP SDNC before Dublin. | 6.5 |