Medium severity6.5NVD Advisory· Published Jul 11, 2018· Updated Jun 17, 2026
CVE-2018-0039
CVE-2018-0039
Description
Juniper Networks Contrail Service Orchestration releases prior to 4.0.0 have Grafana service enabled by default with hardcoded credentials. These credentials allow network based attackers unauthorized access to information stored in Grafana or exploit other weaknesses or vulnerabilities in Grafana.
Affected products
2< 4.0.0+ 1 more
- (no CPE)range: < 4.0.0
- (no CPE)range: unspecified
Patches
Vulnerability mechanics
References
1- kb.juniper.net/JSA10872nvdVendor Advisory
News mentions
0No linked articles in our index yet.