CVE-2019-12130 : What You Need to Know

An unauthorized individual can obtain unrestricted access to the corresponding ONAP services without any form of authentication by utilizing specific ports. This vulnerability affects all ONAP Operations Manager (OOM) configurations available in Dublin.

Understanding CVE-2019-12130

In ONAP CLI through Dublin, an attacker can gain full access to ONAP services without authentication by exploiting certain ports.

What is CVE-2019-12130?

This CVE allows unauthorized access to ONAP services without authentication through specific ports, impacting all ONAP Operations Manager (OOM) setups in Dublin.

The Impact of CVE-2019-12130

Unauthorized individuals can access ONAP services without authentication
Risk of unauthorized manipulation or disruption of ONAP services

Technical Details of CVE-2019-12130

This section provides technical details of the vulnerability.

Vulnerability Description

An attacker can gain full access to ONAP services without authentication through ports 30234, 30290, 32010, 30270, 30224, 30281, 30254, 30285, and/or 30271.

Affected Systems and Versions

All ONAP Operations Manager (OOM) configurations available in Dublin are affected.

Exploitation Mechanism

Unauthorized individuals exploit specific ports to bypass authentication and gain unrestricted access to ONAP services.

Mitigation and Prevention

Protect your systems from CVE-2019-12130 with the following steps:

Immediate Steps to Take

Implement firewall rules to restrict access to vulnerable ports
Monitor network traffic for any suspicious activities
Apply access controls to limit unauthorized access

Long-Term Security Practices

Regularly update and patch ONAP systems
Conduct security audits and assessments to identify vulnerabilities
Educate users on secure authentication practices

Patching and Updates

Apply patches and updates provided by ONAP to address the vulnerability