Document OJSI-76 (CVE-2019-12115) vulnerability

Issue-ID: OJSI-76 Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com> Change-Id: I0ae71c86d27f06c9ad68cb294f49f8ebd1fb237c
author: Krzysztof Opasiak <k.opasiak@samsung.com> 2019-06-05 02:06:45 +0200
committer: Krzysztof Opasiak <k.opasiak@samsung.com> 2019-06-05 02:06:45 +0200
commit: 7396f764d69b38b48984db49aa4b25ee7a22d685 (patch)
tree: c0c0ad7ede5529aab43a9ba2e6d73acbdef2adfb /docs/release-notes.rst
parent: 12e6973022ee1b48868514c556cf09836e13fa4d (diff)
1 files changed, 1 insertions, 0 deletions
diff --git a/docs/release-notes.rst b/docs/release-notes.rst
index 5951dbf988..1cdd7f4a43 100644
--- a/docs/release-notes.rst
+++ b/docs/release-notes.rst
@@ -102,6 +102,7 @@ Security Notes
 *Known Security Issues*
 
 -  [`OJSI-31 <https://jira.onap.org/browse/OJSI-31>`__\ ] - Unsecured Swagger UI Interface in sdc-wfd-be
+-  CVE-2019-12115 [`OJSI-76 <https://jira.onap.org/browse/OJSI-76>`__\ ] - demo-sdc-sdc-be exposes JDWP on port 4000 which allows for arbitrary code execution
 
 *Known Vulnerabilities in Used Modules*
author	Krzysztof Opasiak <k.opasiak@samsung.com>	2019-06-05 02:06:45 +0200
committer	Krzysztof Opasiak <k.opasiak@samsung.com>	2019-06-05 02:06:45 +0200
commit	7396f764d69b38b48984db49aa4b25ee7a22d685 (patch)
tree	c0c0ad7ede5529aab43a9ba2e6d73acbdef2adfb /docs/release-notes.rst
parent	12e6973022ee1b48868514c556cf09836e13fa4d (diff)