CVE-2019-12130

Name of the Vulnerable Software and Affected Versions ONAP CLI through Dublin

Description The issue allows an attacker to gain full access to ONAP services without authentication by accessing specific ports, including 30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and 30271. All ONAP Operations Manager (OOM) setups are affected.

Recommendations For ONAP CLI through Dublin, restrict access to the specified ports (30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and 30271) to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.