Juniper Networks Contrail Vulnerabilities
Juniper%20networks Contrail vulnerabilities.
Vulnerability Published:
ποΈ Published
- Anytime
Sort By:
ποΈ Published Date
- Descending
Contrail Service Orchestration: An authenticated local user may have their permissions elevated via the device via management interface without authentication
CVE-2022-22189Juniper NetworksContrail Service Orche...πΎ7.3HIGHContrail Service Orchestration: Tenants able to see other tenants policies via REST API interface
CVE-2022-22152Juniper NetworksContrail Service Orche...7.7HIGHContrail Cloud: Hardcoded credentials for RabbitMQ service
CVE-2021-0279Juniper NetworksContrail Cloud8.6HIGHContrail Insights: The REST API implementation allows an unauthenticated remote attacker to execute commands as root.
CVE-2021-0265Juniper NetworksContrail InsightsπΎ8.1HIGHContrail Networking: Administrator credentials are exposed in a plaintext file
CVE-2021-0212Juniper NetworksContrail NetworkingπΎ5MEDIUMContrail Service Orchestration: Hardcoded credentials for Grafana service
CVE-2018-0039Juniper NetworksContrail Service Orche...πΎ6.5MEDIUMContrail Service Orchestration: hardcoded cryptographic certificates and keys
CVE-2018-0040Juniper NetworksContrail Service Orche...πΎ9.8CRITICALContrail Service Orchestration: Hardcoded credentials for Keystone service.
CVE-2018-0041Juniper NetworksContrail Service Orche...πΎ9.8CRITICALContrail: hard coded credentials
CVE-2017-10616Juniper NetworksContrailπΎ5.3MEDIUMContrail: XML External Entity (XXE) vulnerability
CVE-2017-10617Juniper NetworksContrailπΎπ‘5MEDIUM