diff options
author | Krzysztof Opasiak <k.opasiak@samsung.com> | 2019-06-05 02:11:23 +0200 |
---|---|---|
committer | Krzysztof Opasiak <k.opasiak@samsung.com> | 2019-06-05 02:11:23 +0200 |
commit | 340253b90fb6c0eb0bab8d5c1c8d2375c8dc48ec (patch) | |
tree | 98bd086ca2d2be565243df3789658ea06d44ccf4 /docs | |
parent | d2edceed780c9f36652ab56f6888b626dff5a378 (diff) |
Document OJSI-90 vulnerability
Issue-ID: OJSI-90
Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com>
Change-Id: I7be4019410a8f0e06ac16b5c37830f4cdd15f004
Diffstat (limited to 'docs')
-rw-r--r-- | docs/release-notes.rst | 1 |
1 files changed, 1 insertions, 0 deletions
diff --git a/docs/release-notes.rst b/docs/release-notes.rst index dcfe042549..52dcb21c0a 100644 --- a/docs/release-notes.rst +++ b/docs/release-notes.rst @@ -107,6 +107,7 @@ Security Notes - CVE-2019-12117 [`OJSI-78 <https://jira.onap.org/browse/OJSI-78>`__\ ] - demo-sdc-sdc-onboarding-be exposes JDWP on port 4001 which allows for arbitrary code execution - CVE-2019-12118 [`OJSI-79 <https://jira.onap.org/browse/OJSI-79>`__\ ] - demo-sdc-sdc-wfd-be exposes JDWP on port 7001 which allows for arbitrary code execution - CVE-2019-12119 [`OJSI-80 <https://jira.onap.org/browse/OJSI-80>`__\ ] - demo-sdc-sdc-wfd-fe exposes JDWP on port 7000 which allows for arbitrary code execution +- [`OJSI-90 <https://jira.onap.org/browse/OJSI-90>`__\ ] - SDC exposes unprotected API for user creation *Known Vulnerabilities in Used Modules* |