Lucene search
+L

12 matches found

RedhatCVE
RedhatCVE
added 2026/01/07 9:29 a.m.13 views

CVE-2019-12121

An issue was detected in ONAP Portal through Dublin. By executing a padding oracle attack using the ONAPPORTAL/processSingleSignOn UserId field, an attacker is able to decrypt arbitrary information encrypted with the same symmetric key as UserId. All Portal setups are affected...

7.5CVSS6.8AI score0.00725EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2026/01/07 9:26 a.m.28 views

CVE-2019-12122

An issue was discovered in ONAP Portal through Dublin. By executing a call to ONAPPORTAL/portalApi/loggedinUser, an attacker who possesses a user's cookie may retrieve that user's password from the database. All Portal setups are affected...

6.5CVSS7AI score0.00576EPSS
Exploits1References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2019-3772

Malware in sbrugna...

7.5CVSS7.6AI score0.00725EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2019-3773

Malware in sbrugna...

6.5CVSS6.6AI score0.00576EPSS
Exploits1References2
CNVD
CNVD
added 2020/03/19 12:0 a.m.6 views

Unspecified vulnerability in ONAP Portal (CNVD-2020-28481)

ONAP Portal is a visual design tool for parsing applications from the ONAP project. An unspecified vulnerability exists in ONAP Portal. An attacker could exploit the vulnerability to decrypt information...

7.5CVSS6.8AI score0.00725EPSS
Exploits1References1
CNVD
CNVD
added 2020/03/19 12:0 a.m.6 views

Unspecified Vulnerability in ONAP Portal

ONAP Portal is a visual design tool for parsing applications from the ONAP project. An unspecified vulnerability exists in ONAP Portal that stems from incorrect access control. An attacker can exploit the vulnerability by calling ONAPPORTAL/portalApi/loggedinUser to obtain sensitive information...

6.5CVSS6.7AI score0.00576EPSS
Exploits1References1
OSV
OSV
added 2020/03/18 7:15 p.m.4 views

CVE-2019-12122

An issue was discovered in ONAP Portal through Dublin. By executing a call to ONAPPORTAL/portalApi/loggedinUser, an attacker who possesses a user's cookie may retrieve that user's password from the database. All Portal setups are affected...

6.5CVSS6.6AI score0.00576EPSS
Exploits1References1
OSV
OSV
added 2020/03/18 7:15 p.m.7 views

CVE-2019-12121

An issue was detected in ONAP Portal through Dublin. By executing a padding oracle attack using the ONAPPORTAL/processSingleSignOn UserId field, an attacker is able to decrypt arbitrary information encrypted with the same symmetric key as UserId. All Portal setups are affected...

7.5CVSS7.2AI score0.00725EPSS
Exploits1References1
Prion
Prion
added 2020/03/18 7:15 p.m.14 views

Default credentials

An issue was discovered in ONAP Portal through Dublin. By executing a call to ONAPPORTAL/portalApi/loggedinUser, an attacker who possesses a user's cookie may retrieve that user's password from the database. All Portal setups are affected...

4CVSS6.5AI score0.00576EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2020/03/18 5:18 p.m.58 views

CVE-2019-12122

CVE-2019-12122 affects ONAP Portal (Dublin) where calling the endpoint ONAPPORTAL/portalApi/loggedinUser can allow an attacker who has a user’s cookie to retrieve that user’s password from the database. The Red Hat and NVD entries confirm the same issue across all Portal setups. The provided docu...

6.5CVSS6.4AI score0.00576EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2020/03/18 5:18 p.m.18 views

CVE-2019-12121

An issue was detected in ONAP Portal through Dublin. By executing a padding oracle attack using the ONAPPORTAL/processSingleSignOn UserId field, an attacker is able to decrypt arbitrary information encrypted with the same symmetric key as UserId. All Portal setups are affected...

7.4AI score0.00725EPSS
Exploits1References1
CVE
CVE
added 2020/03/18 5:18 p.m.57 views

CVE-2019-12121

The CVE-2019-12121 entry concerns ONAP Portal (Dublin) and describes a padding oracle weakness in the ONAPPORTAL/processSingleSignOn UserId field. Attackers could decrypt information encrypted with the same symmetric key as UserId, affecting all Portal deployments. The connected Red Hat and other...

7.5CVSS7.3AI score0.00725EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder