CVE-2018-0040 is a vulnerability in Juniper Networks Contrail Service Orchestration
Published on July 11, 2018
Contrail Service Orchestration: hardcoded cryptographic certificates and keys
Juniper Networks Contrail Service Orchestrator versions prior to 4.0.0 use hardcoded cryptographic certificates and keys in some cases, which may allow network based attackers to gain unauthorized access to services.
Weakness Type
Use of Hard-coded Cryptographic Key
The use of a hard-coded cryptographic key significantly increases the possibility that encrypted data may be recovered.
Products Associated with CVE-2018-0040
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-0040 are published in Juniper Networks Contrail Service Orchestration:
Affected Versions
Juniper Networks Contrail Service Orchestration:- Version unspecified and below 4.0.0 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.