Summary:
An issue was discovered in ONAP SDNC before Dublin. By executing sla/dgUpload with a crafted filename parameter, an unauthenticated attacker can execute an arbitrary command. All SDC setups that include admportal are affected.
Published:
Wednesday, March 18, 2020 - 19:15
cvss:
5.0