Vulnerabilities > Juniper > Contrail

DATE CVE VULNERABILITY TITLE RISK
2017-10-13 CVE-2017-10617 XXE vulnerability in Juniper Contrail
The ifmap service that comes bundled with Contrail has an XML External Entity (XXE) vulnerability that may allow an attacker to retrieve sensitive system files.
network
low complexity
juniper CWE-611
5.0
5.0
2017-10-13 CVE-2017-10616 Use of Hard-coded Credentials vulnerability in Juniper Contrail
The ifmap service that comes bundled with Juniper Networks Contrail releases uses hard coded credentials.
network
low complexity
juniper CWE-798
5.3
5.3