CVE-2019-12132

2020-03-1817:25:06

mitre

www.cve.org

AI Score

9.5

Confidence

High

EPSS

0.007

Percentile

80.0%

JSON

An issue was discovered in ONAP SDNC before Dublin. By executing sla/dgUpload with a crafted filename parameter, an unauthenticated attacker can execute an arbitrary command. All SDC setups that include admportal are affected.

References

jira.onap.org/browse/OJSI-41