VYPR
Critical severity9.8NVD Advisory· Published Mar 18, 2020· Updated Jun 17, 2026

CVE-2019-12120

CVE-2019-12120

Description

An issue was discovered in ONAP VNFSDK through Dublin. By accessing port 8000 of demo-vnfsdk-vnfsdk, an unauthenticated attacker (who already has access to pod-to-pod communication) may execute arbitrary code inside that pod. All ONAP Operations Manager (OOM) setups are affected.

Affected products

2
  • ONAP/VNFSDKdescription
  • ONAP/VNFSDKllm-create
    Range: Dublin

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.