Vulnerabilities > Onap > Open Network Automation Platform > Critical

DATE CVE VULNERABILITY TITLE RISK
2020-03-19 CVE-2019-12128 Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform
In ONAP SO through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication.
network
low complexity
onap CWE-306
critical
 10.0
10
2020-03-19 CVE-2019-12129 Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform
In ONAP MSB through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication.
network
low complexity
onap CWE-306
critical
 10.0
10
2020-03-19 CVE-2019-12130 Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform
In ONAP CLI through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication.
network
low complexity
onap CWE-306
critical
 10.0
10