Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in ONAP SDC through Dublin. By accessing port 4001 of demo-sdc-sdc-onboarding-be pod, an unauthenticated attacker (who already has access to pod-to-pod communication) may execute arbitrary code inside that pod. All ONAP Operations Manager (OOM) setups are affected.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ONAP Service Design and Creation 代码注入漏洞
Vulnerability Description
ONAP Service Design and Creation(SDC)是ONAP项目的一套可视化建模和设计工具。 ONAP SDC Dublin及之前版本中存在代码注入漏洞,该漏洞源于不正确的访问控制。远程攻击者可通过访问demo-sdc-sdc-onboarding-be pod的4001端口利用该漏洞在系统中执行任意代码。
CVSS Information
N/A
Vulnerability Type
N/A