CVE-2018-0041 is a vulnerability in Juniper Networks Contrail Service Orchestration
Published on July 11, 2018
Contrail Service Orchestration: Hardcoded credentials for Keystone service.
Juniper Networks Contrail Service Orchestration releases prior to 3.3.0 use hardcoded credentials to access Keystone service. These credentials allow network based attackers unauthorized access to information stored in keystone.
Weakness Type
Use of Hard-coded Credentials
The software contains hard-coded credentials, such as a password or cryptographic key, which it uses for its own inbound authentication, outbound communication to external components, or encryption of internal data.
Products Associated with CVE-2018-0041
Want to know whenever a new CVE is published for Juniper Networks Contrail Service Orchestration? stack.watch will email you.
Affected Versions
Juniper Networks Contrail Service Orchestration:- Version unspecified and below 3.3.0 is affected.
Exploit Probability
EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.