2020-03-18 17:18:53
mitre
PUBLISHED
An issue was discovered in ONAP Portal through Dublin. By executing a call to ONAPPORTAL/portalApi/loggedinUser, an attacker who possesses a users cookie may retrieve that users password from the database. All Portal setups are affected.