Vulnerabilities > Onap > Open Network Automation Platform > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-03-19 | CVE-2019-12125 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform In ONAP Logging through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 9.8 |
| 2020-03-19 | CVE-2019-12126 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform In ONAP DCAE through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 9.8 |
| 2020-03-19 | CVE-2019-12127 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform In ONAP OOM through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 9.8 |
| 2020-03-19 | CVE-2019-12128 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform In ONAP SO through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 9.8 |
| 2020-03-19 | CVE-2019-12129 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform In ONAP MSB through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 9.8 |
| 2020-03-19 | CVE-2019-12130 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform In ONAP CLI through Dublin, by accessing an applicable port (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271), an attacker gains full access to the respective ONAP services without any authentication. | 9.8 |
| 2020-03-18 | CVE-2019-12112 | OS Command Injection vulnerability in Onap Open Network Automation Platform An issue was discovered in ONAP SDNC before Dublin. | 9.8 |
| 2020-03-18 | CVE-2019-12114 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform 3.0.0/3.0.1/3.0.2 An issue was discovered in ONAP HOLMES before Dublin. | 9.8 |
| 2020-03-18 | CVE-2019-12115 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform An issue was discovered in ONAP SDC through Dublin. | 9.8 |
| 2020-03-18 | CVE-2019-12116 | Missing Authentication for Critical Function vulnerability in Onap Open Network Automation Platform An issue was discovered in ONAP SDC through Dublin. | 9.8 |