Common vulnerabilities and Exposures (CVE)

Skip to main content

Required CVE Record Information

Description

Juniper Networks Contrail Service Orchestration releases prior to 3.3.0 use hardcoded credentials to access Keystone service. These credentials allow network based attackers unauthorized access to information stored in keystone.

CVSS 1 Total

Learn more
ScoreSeverityVersionVector String
9.8CRITICAL3.0CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Product Status

Learn more

Versions 1 Total

Default Status: unknown

affected

  • affected before 3.3.0 

Updated:

This container includes required additional information provided by the CVE Program for this vulnerability.

References 1 Total