Lucene search
K

12 matches found

BDU FSTEC
BDU FSTEC
added 2022/10/26 12:0 a.m.5 views

The vulnerability of the control interface of Juniper Networks’ Contrail Service Orchestration allows a attacker to enhance their privileges and gain full control over the application.

The vulnerability of the Juniper Networks Contrail Service Orchestration software platform is related to deficiencies in access control. Exploiting this vulnerability can allow attackers to enhance their privileges and gain full control over the application...

7.3CVSS7.2AI score0.00225EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/04/27 12:0 a.m.5 views

The vulnerability of the Juniper Networks Contrail Service Orchestration software lies in a failure of the protection mechanism in the REST API, which allows an attacker to disclose protected information.

The vulnerability of the Juniper Networks Contrail Service Orchestration software is related to a failure in the protection mechanism of the REST API. Exploiting this vulnerability can allow an attacker, operating remotely, to disclose the protected information...

7.7CVSS6.5AI score0.0078EPSS
Exploits0References3Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/08/09 12:0 a.m.3 views

The vulnerability of Contrail messaging broker RabbitMQ on Juniper Networks’ Contrail Cloud platform allows a attacker to cause a service failure or gain access to protected information.

The vulnerability of the Contrail messaging broker RabbitMQ on Juniper Networks’ Contrail Cloud platform is related to the use of pre-installed credentials. Exploiting this vulnerability could allow an attacker to cause service failures or gain access to sensitive information...

8.6CVSS5.9AI score0.00621EPSS
Exploits0References4Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/02/25 12:0 a.m.5 views

The vulnerability of Juniper Networks’ Contrail Networking software for building virtual networks lies in the lack of protection for service data, which allows a malicious actor to gain unauthorized access to protected information.

The vulnerability of the Juniper Networks Contrail Networking software for building virtual networks is related to the lack of protection for operational data. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

5CVSS5.8AI score0.00312EPSS
Exploits0References3Affected Software1
CNVD
CNVD
added 2021/01/18 12:0 a.m.1 views

Juniper Networks Contrail Networking Information Disclosure Vulnerability

Juniper Networks Contrail Networking is Juniper Networks' software that provides dynamic end-to-end networking policy and control management for network virtualization and cloud management platforms. An information disclosure vulnerability exists in Juniper Networks Contrail Networking that could...

7.2CVSS6AI score0.00312EPSS
Exploits0References1
CNVD
CNVD
added 2018/07/12 12:0 a.m.1 views

Juniper Contrail Service Orchestration Unauthorized Access Vulnerability

Juniper Contrail Service Orchestration CSO is a Juniper Networks suite of products for designing and deploying network services in a centralized cloud CPE deployment model. An unauthorized access vulnerability exists in Juniper CSO versions prior to 4.0.0, which stems from the program's use of...

10CVSS9.6AI score0.01434EPSS
Exploits0References1
CNVD
CNVD
added 2018/07/12 12:0 a.m.3 views

Juniper Contrail Service Orchestration Hard-Coded Credentials Vulnerability (CNVD-2019-19205)

Juniper Contrail Service Orchestration CSO is a Juniper Networks suite of products for designing and deploying network services in a centralized cloud CPE deployment model. A hard-coded credentials vulnerability exists in Juniper CSO versions prior to 4.0.0. The vulnerability stems from the fact...

9.8CVSS7.9AI score0.00973EPSS
Exploits0References1
OSV
OSV
added 2018/07/11 6:29 p.m.4 views

CVE-2018-0041

Juniper Networks Contrail Service Orchestration releases prior to 3.3.0 use hardcoded credentials to access Keystone service. These credentials allow network based attackers unauthorized access to information stored in keystone...

9.8CVSS5.8AI score0.01129EPSS
Exploits0References1
OSV
OSV
added 2018/07/11 6:29 p.m.3 views

CVE-2018-0040

Juniper Networks Contrail Service Orchestrator versions prior to 4.0.0 use hardcoded cryptographic certificates and keys in some cases, which may allow network based attackers to gain unauthorized access to services...

9.8CVSS5.8AI score0.01434EPSS
Exploits0References1
CNVD
CNVD
added 2017/10/19 12:0 a.m.3 views

Juniper Contrail Information Disclosure Vulnerability

Juniper Contrail is a suite of cloud-based security solutions from Juniper Networks, Inc. The solution provides intelligent automation, application security and reliability for cloud and NFV. A security vulnerability exists in the ifmap service in Juniper Contrail that stems from the program's us...

6.4CVSS5.3AI score0.013EPSS
Exploits1References1
CNVD
CNVD
added 2017/10/19 12:0 a.m.4 views

Juniper Contrail XML External Entity Injection Vulnerability

Juniper Contrail is a suite of cloud-based security solutions from Juniper Networks, Inc. The solution provides intelligent automation, application security and reliability for cloud and NFV. An XML external entity injection vulnerability exists in the ifmap service in Juniper Contrail. A remote...

5CVSS5.5AI score0.02278EPSS
Exploits1References1
GithubExploit
GithubExploit
added 2017/10/11 7:38 a.m.2 views

Exploit for Improper Restriction of XML External Entity Reference in Juniper Contrail

CVE-2017-10616 & CVE-2017-10617 These two vulnerabilities aff...

6.4CVSS7.3AI score0.02278EPSS
Exploits1
Rows per page
Query Builder