Security Advisory

CVE-2019-12122

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2020-03-18 17:18:53

Last updated 2024-08-04 23:10:30

Assigner mitre

State PUBLISHED

Description

An issue was discovered in ONAP Portal through Dublin. By executing a call to ONAPPORTAL/portalApi/loggedinUser, an attacker who possesses a users cookie may retrieve that users password from the database. All Portal setups are affected.

← Browse all CVEs View on cve.org ↗