Document OJSI-29 vulnerability

[appc.git] / docs / release-notes.rst

diff --git a/docs/release-notes.rst b/docs/release-notes.rst
index 15ee200..a6aad66 100644 (file)
--- a/docs/release-notes.rst
+++ b/docs/release-notes.rst
@@ -115,6 +115,9 @@ The Dublin release added the following functionality:
 
 *Known Security Issues*
 
+      - CVE-2019-12316 `OJSI-25 <https://jira.onap.org/browse/OJSI-25>`_ - SQL Injection in APPC
+      - `OJSI-29 <https://jira.onap.org/browse/OJSI-29>`_ - Unsecured Swagger UI Interface in AAPC
+
 *Known Vulnerabilities in Used Modules*
 
 Quick Links: