{"vulnerability": "CVE-2019-1211", "sightings": [{"uuid": "ebee2f62-3e28-48f6-a512-8f521fcf9f64", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12115", "type": "seen", "source": "https://t.me/cibsecurity/10598", "content": "ATENTION\u203c New - CVE-2019-12115\n\nAn issue was discovered in ONAP SDC through Dublin. By accessing port 4000 of demo-sdc-sdc-be pod, an unauthenticated attacker (who already has access to pod-to-pod communication) may execute arbitrary code inside that pod. All ONAP Operations Manager (OOM) setups are affected.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-03-18T22:01:14.000000Z"}, {"uuid": "69cc8448-3fea-43c8-9206-b3073cdddd00", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12119", "type": "seen", "source": "https://t.me/cibsecurity/10594", "content": "ATENTION\u203c New - CVE-2019-12119\n\nAn issue was discovered in ONAP SDC through Dublin. By accessing port 7000 of demo-sdc-sdc-wfd-fe pod, an unauthenticated attacker (who already has access to pod-to-pod communication) may execute arbitrary code inside that pod. All ONAP Operations Manager (OOM) setups are affected.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-03-18T22:01:10.000000Z"}, {"uuid": "e6ea4c66-dbf5-4b43-8c9d-66ab446bb8b5", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12118", "type": "seen", "source": "https://t.me/cibsecurity/10595", "content": "ATENTION\u203c New - CVE-2019-12118\n\nAn issue was discovered in ONAP SDC through Dublin. By accessing port 7001 of demo-sdc-sdc-wfd-be pod, an unauthenticated attacker (who already has access to pod-to-pod communication) may execute arbitrary code inside that pod. All ONAP Operations Manager (OOM) setups are affected.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-03-18T22:01:11.000000Z"}, {"uuid": "5048a69d-1329-4640-a01d-8a26343a4416", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12117", "type": "seen", "source": "https://t.me/cibsecurity/10596", "content": "ATENTION\u203c New - CVE-2019-12117\n\nAn issue was discovered in ONAP SDC through Dublin. By accessing port 4001 of demo-sdc-sdc-onboarding-be pod, an unauthenticated attacker (who already has access to pod-to-pod communication) may execute arbitrary code inside that pod. All ONAP Operations Manager (OOM) setups are affected.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-03-18T22:01:12.000000Z"}, {"uuid": "92b62b15-4998-4f6c-9533-8b87321f8321", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12116", "type": "seen", "source": "https://t.me/cibsecurity/10597", "content": "ATENTION\u203c New - CVE-2019-12116\n\nAn issue was discovered in ONAP SDC through Dublin. By accessing port 6000 of demo-sdc-sdc-fe pod, an unauthenticated attacker (who already has access to pod-to-pod communication) may execute arbitrary code inside that pod. All ONAP Operations Manager (OOM) setups are affected.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-03-18T22:01:13.000000Z"}, {"uuid": "8ed857e6-38dd-4c63-87ee-bb44ea24af67", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12113", "type": "seen", "source": "https://t.me/cibsecurity/10600", "content": "ATENTION\u203c New - CVE-2019-12113\n\nAn issue was discovered in ONAP SDNC before Dublin. By executing sla/printAsGv with a crafted module parameter, an authenticated user can execute an arbitrary command. All SDC setups that include admportal are affected.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-03-18T22:01:16.000000Z"}, {"uuid": "cad5a34e-7bfc-4aa1-814a-e05fc8564beb", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12112", "type": "seen", "source": "https://t.me/cibsecurity/10601", "content": "ATENTION\u203c New - CVE-2019-12112\n\nAn issue was discovered in ONAP SDNC before Dublin. By executing sla/upload with a crafted filename parameter, an unauthenticated attacker can execute an arbitrary command. All SDC setups that include admportal are affected.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-03-18T22:01:17.000000Z"}, {"uuid": "3add21a7-e3cb-4065-9356-4107bf85509e", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "9f56dd64-161d-43a6-b9c3-555944290a09", "vulnerability": "CVE-2019-12114", "type": "seen", "source": "https://t.me/cibsecurity/10599", "content": "ATENTION\u203c New - CVE-2019-12114\n\nAn issue was discovered in ONAP HOLMES before Dublin. By accessing port 9202 of dep-holmes-engine-mgmt pod, an unauthenticated attacker (who already has access to pod-to-pod communication) may execute arbitrary code inside that pod. All ONAP Operations Manager (OOM) setups are affected.\n\n\ud83d\udcd6 Read\n\nvia \"National Vulnerability Database\".", "creation_timestamp": "2020-03-18T22:01:15.000000Z"}]}