CVE-2019-12117

Name of the Vulnerable Software and Affected Versions ONAP SDC through Dublin ONAP Operations Manager (OOM) setups (affected versions not specified)

Description An issue was discovered that allows an unauthenticated attacker with access to pod-to-pod communication to execute arbitrary code inside the demo-sdc-sdc-onboarding-be pod by accessing port 4001.

Recommendations For ONAP SDC through Dublin, restrict access to port 4001 of the demo-sdc-sdc-onboarding-be pod to prevent exploitation. For ONAP Operations Manager (OOM) setups, consider implementing additional security measures to limit pod-to-pod communication until a fix is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.