Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Contrail Service Orchestration: Hardcoded credentials for Grafana service
Vulnerability Description
Juniper Networks Contrail Service Orchestration releases prior to 4.0.0 have Grafana service enabled by default with hardcoded credentials. These credentials allow network based attackers unauthorized access to information stored in Grafana or exploit other weaknesses or vulnerabilities in Grafana.
CVSS Information
N/A
Vulnerability Type
使用硬编码的凭证
Vulnerability Title
Juniper Contrail Service Orchestration 安全漏洞
Vulnerability Description
Juniper Contrail Service Orchestration(CSO)是美国瞻博网络(Juniper Networks)公司的一套用于在云CPE集中部署模型中设计和部署网络服务的产品。 Juniper CSO 4.0.0之前版本中存在安全漏洞,该漏洞源于在默认情况下程序可以使用硬编码凭证打开Grafana服务。攻击者可利用该漏洞访问Grafana中存储的信息。
CVSS Information
N/A
Vulnerability Type
N/A