Medium severity6.5NVD Advisory· Published Mar 18, 2020· Updated Jun 17, 2026
CVE-2019-12122
CVE-2019-12122
Description
An issue was discovered in ONAP Portal through Dublin. By executing a call to ONAPPORTAL/portalApi/loggedinUser, an attacker who possesses a user's cookie may retrieve that user's password from the database. All Portal setups are affected.
Affected products
2- ONAP/Portaldescription
Patches
Vulnerability mechanics
References
1- jira.onap.org/browse/OJSI-65nvdExploitPatchVendor Advisory
News mentions
0No linked articles in our index yet.