From: Krzysztof Opasiak <k.opasiak@samsung.com>
Date: Wed, 5 Jun 2019 23:30:47 +0000 (+0200)
Subject: Document OJSI-179 vulnerability
X-Git-Tag: 1.6.1~11^2
X-Git-Url: https://gerrit.onap.org/r/gitweb?p=sdnc%2Foam.git;a=commitdiff_plain;h=abf8a735233779c57b6360919909b9ebda38af1a

Document OJSI-179 vulnerability

Issue-ID: OJSI-179
Signed-off-by: Krzysztof Opasiak <k.opasiak@samsung.com>
Change-Id: I296dd7076c84fd7947708cec65a597bb483f0836

Former-commit-id: 1195ce6167b5d32cef507ac95c38f55973ee9e49
---

diff --git a/docs/release-notes.rst b/docs/release-notes.rst
index d7d6b171..216b192f 100644
--- a/docs/release-notes.rst
+++ b/docs/release-notes.rst
@@ -58,6 +58,7 @@ The full list of known issues in SDNC may be found in the ONAP Jira at <https://
 - `OJSI-34 <https://jira.onap.org/browse/OJSI-34>`_ Multiple SQL Injection issues in SDNC
 - `OJSI-99 <https://jira.onap.org/browse/OJSI-99>`_ In default deployment SDNC (sdnc) exposes HTTP port 30202 outside of cluster.
 - `OJSI-100 <https://jira.onap.org/browse/OJSI-100>`_ In default deployment SDNC (sdnc-dgbuilder) exposes HTTP port 30203 outside of cluster.
+- `OJSI-179 <https://jira.onap.org/browse/OJSI-179>`_ dev-sdnc-sdnc exposes JDWP on port 1830 which allows for arbitrary code execution
 
 *Known Vulnerabilities in Used Modules*