Hardcoded Credentials in Juniper Networks Contrail Service Orchestration Allow Unauthorized Access to Keystone

Hardcoded Credentials in Juniper Networks Contrail Service Orchestration Allow Unauthorized Access to Keystone

CVE-2018-0041 · HIGH Severity

AV:N/AC:L/AU:N/C:P/I:P/A:P

Juniper Networks Contrail Service Orchestration releases prior to 3.3.0 use hardcoded credentials to access Keystone service. These credentials allow network based attackers unauthorized access to information stored in keystone.

Learn more about our Network Penetration Testing.