CVE-2019-12128 : Security Advisory and Response
Discover the impact of CVE-2019-12128, a vulnerability in ONAP SO allowing unauthorized access to services without authentication. Learn about affected systems and mitigation steps.
This CVE-2019-12128 article provides insights into a vulnerability in ONAP SO through Dublin, allowing unauthorized access to ONAP services without authentication.
Understanding CVE-2019-12128
What is CVE-2019-12128?
In ONAP SO through Dublin, an attacker can gain unrestricted access to ONAP services by exploiting specific ports without the need for authentication.
The Impact of CVE-2019-12128
This vulnerability affects all ONAP Operations Manager (OOM) configurations, potentially leading to unauthorized access to critical services.
Technical Details of CVE-2019-12128
Vulnerability Description
Through the utilization of specific ports, an adversary can acquire unrestricted entry to ONAP services in ONAP SO via the Dublin implementation without authentication.
Affected Systems and Versions
- Product: n/a
- Vendor: n/a
- Versions: n/a
Exploitation Mechanism
The attacker gains full access to ONAP services by accessing ports 30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271 without authentication.
Mitigation and Prevention
Immediate Steps to Take
- Monitor network traffic for any suspicious activities on the mentioned ports.
- Implement access controls and authentication mechanisms to restrict unauthorized access.
Long-Term Security Practices
- Regularly update and patch ONAP SO to address security vulnerabilities.
Patching and Updates
Apply security patches provided by ONAP to mitigate the vulnerability and enhance system security.