Critical severity9.8NVD Advisory· Published Jul 11, 2018· Updated Jun 17, 2026
CVE-2018-0038
CVE-2018-0038
Description
Juniper Networks Contrail Service Orchestration releases prior to 3.3.0 have Cassandra service enabled by default with hardcoded credentials. These credentials allow network based attackers unauthorized access to information stored in Cassandra.
Affected products
2<3.3.0+ 1 more
- (no CPE)range: <3.3.0
- (no CPE)range: <3.3.0
Patches
Vulnerability mechanics
References
1- kb.juniper.net/JSA10872nvdVendor Advisory
News mentions
0No linked articles in our index yet.