CVE-2018-0041 is a vulnerability in Juniper Networks Contrail Service Orchestration
Published on July 11, 2018
Contrail Service Orchestration: Hardcoded credentials for Keystone service.
Juniper Networks Contrail Service Orchestration releases prior to 3.3.0 use hardcoded credentials to access Keystone service. These credentials allow network based attackers unauthorized access to information stored in keystone.
Weakness Type
Use of Hard-coded Credentials
The software contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.
Products Associated with CVE-2018-0041
You can be notified by email with stack.watch whenever vulnerabilities like CVE-2018-0041 are published in Juniper Networks Contrail Service Orchestration:
Affected Versions
Juniper Networks Contrail Service Orchestration:- Version unspecified and below 3.3.0 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.