Critical severity9.1NVD Advisory· Published Mar 18, 2020· Updated Jun 17, 2026
CVE-2019-12131
CVE-2019-12131
Description
An issue was detected in ONAP APPC through Dublin and SDC through Dublin. By setting a USER_ID parameter in an HTTP header, an attacker may impersonate an arbitrary existing user without any authentication. All APPC and SDC setups are affected.
Affected products
3- ONAP/APPCdescription
Patches
Vulnerability mechanics
References
1- jira.onap.org/browse/OJSI-93nvdExploitPatchVendor Advisory
News mentions
0No linked articles in our index yet.