CVE-2018-0040
published 2018-07-11CVE-2018-0040: Juniper Networks Contrail Service Orchestrator versions prior to 4.0.0 use hardcoded cryptographic certificates and keys in some cases, which may allow network…
critical9.8CVSS 3.0
AVNACLPRNUINSUCHIHAH
Juniper Networks Contrail Service Orchestrator versions prior to 4.0.0 use hardcoded cryptographic certificates and keys in some cases, which may allow network based attackers to gain unauthorized access to services.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| juniper | contrail | — | — |
| juniper | contrail_service_orchestration | < 4.0.0 | 4.0.0 |
| juniper_networks | contrail_service_orchestration | >= unspecified < 4.0.0 | 4.0.0 |