Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was detected in ONAP APPC through Dublin and SDC through Dublin. By setting a USER_ID parameter in an HTTP header, an attacker may impersonate an arbitrary existing user without any authentication. All APPC and SDC setups are affected.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
ONAP APPC和SDC 安全漏洞
Vulnerability Description
ONAP APPC和ONAP SDC都是ONAP项目的产品。ONAP APPC是一款应用程序控制器,它主要用于VNF及其组件的生命周期管理。ONAP SDC是一款可视化建模和设计工具。 ONAP APPC Dublin及之前版本和SDC Dublin及之前版本中安全漏洞。攻击者可通过设置HTTP报头中的‘USER_ID’参数利用该漏洞冒充任意已注册的用户。
CVSS Information
N/A
Vulnerability Type
N/A