CVE-2019-12115 : What You Need to Know
Discover the security flaw in ONAP SDC up to Dublin version allowing unauthorized attackers to run malicious code. Learn how to mitigate CVE-2019-12115.
A vulnerability has been found in ONAP SDC up to Dublin version that allows an unauthorized attacker to run malicious code within a pod.
Understanding CVE-2019-12115
This CVE identifies a security flaw in ONAP SDC that impacts all ONAP Operations Manager (OOM) installations.
What is CVE-2019-12115?
An issue in ONAP SDC up to Dublin allows an attacker to execute arbitrary code by accessing port 4000 of a specific pod.
The Impact of CVE-2019-12115
The vulnerability enables unauthorized attackers to run malicious code within the affected pod, compromising the security of ONAP Operations Manager setups.
Technical Details of CVE-2019-12115
This section provides detailed technical insights into the vulnerability.
Vulnerability Description
By exploiting port 4000 of the demo-sdc-sdc-be pod, an unauthorized attacker with pod-to-pod communication access can execute arbitrary code within the pod.
Affected Systems and Versions
- Product: ONAP SDC up to Dublin version
- Vendor: N/A
- Version: N/A
Exploitation Mechanism
The attacker needs the ability to communicate between pods to exploit port 4000 and run malicious code.
Mitigation and Prevention
Protect your systems from CVE-2019-12115 with these security measures.
Immediate Steps to Take
- Monitor and restrict pod-to-pod communication
- Implement network segmentation to limit unauthorized access
Long-Term Security Practices
- Regularly update and patch ONAP SDC and OOM installations
- Conduct security audits and penetration testing to identify vulnerabilities
Patching and Updates
- Apply patches and updates provided by ONAP to address the vulnerability