CVE-2016-4924

vMX: Information leak vulnerability

Severity Score

5.5

*CVSS v3

Exploit Likelihood

*EPSS

Affected Versions

*CPE

Public Exploits

*Multiple Sources

Exploited in Wild

*KEV

Decision

*SSVC

Descriptions

An incorrect permissions vulnerability in Juniper Networks Junos OS on vMX may allow local unprivileged users on a host system read access to vMX or vPFE images and obtain sensitive information contained in them such as private cryptographic keys. This issue was found during internal product security testing. Juniper SIRT is not aware of any malicious exploitation of this vulnerability. No other Juniper Networks products or platforms are affected by this issue. Affected releases are Juniper Networks Junos OS 15.1 prior to 15.1F5; 14.1 prior to 14.1R8

Una vulnerabilidad de permisos incorrectos en Juniper Networks Junos OS en vMX podría permitir que usuarios locales sin privilegios en un sistema host tengan acceso de lectura a imágenes vMX o vPFE y obtengan información sensible contenida en ellas como claves criptográficas privadas. Se encontró el problema durante un análisis de seguridad interno del producto. Juniper SIRT no conoce ninguna explotación maliciosa de esta vulnerabilidad. No hay ningún otro producto o plataforma de Juniper Networks que se vea afectado por este problema. Las distribuciones afectadas son: Juniper Networks Junos OS 15.1 anteriores a 15.1F5 y 14.1 anteriores a 14.1R8.

*Credits: N/A

CVSS Scores

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

None

Availability

None

Attack Vector

Local

Attack Complexity

Low

Privileges Required

Low

User Interaction

None

Scope

Changed

Confidentiality

High

Integrity

High

Availability

None

Attack Vector

Local

Attack Complexity

Low

Authentication

Single

Confidentiality

Partial

Integrity

None

Availability

None

* Common Vulnerability Scoring System

SSVC

Decision:-

Exploitation

Automatable

Tech. Impact

* Organization's Worst-case Scenario

Timeline

2016-05-18 CVE Reserved
2017-10-13 CVE Published
2023-03-08 EPSS Updated
2024-09-16 CVE Updated
---------- Exploited in Wild
---------- KEV Due Date
---------- First Exploit

CWE

CWE-275: Permission Issues

CAPEC

References (2)

URL	Tag	Source
http://www.securityfocus.com/bid/93531	Third Party Advisory

URL	Date	SRC

URL	Date	SRC

URL	Date	SRC
https://kb.juniper.net/JSA10766	2019-10-09

Affected Vendors, Products, and Versions

Vendor		Product				Version		Other		Status
Vendor	Product	Version	Other	Status	<-- -->	Vendor	Product	Version	Other	Status
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				15.1 Search vendor "Juniper" for product "Junos" and version "15.1"		f1		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				15.1 Search vendor "Juniper" for product "Junos" and version "15.1"		f2		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				15.1 Search vendor "Juniper" for product "Junos" and version "15.1"		f2-s1		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				15.1 Search vendor "Juniper" for product "Junos" and version "15.1"		f2-s2		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				15.1 Search vendor "Juniper" for product "Junos" and version "15.1"		f2-s3		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				15.1 Search vendor "Juniper" for product "Junos" and version "15.1"		f2-s4		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				15.1 Search vendor "Juniper" for product "Junos" and version "15.1"		f3		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				15.1 Search vendor "Juniper" for product "Junos" and version "15.1"		f4		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				14.1 Search vendor "Juniper" for product "Junos" and version "14.1"		-		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				14.1 Search vendor "Juniper" for product "Junos" and version "14.1"		r1		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				14.1 Search vendor "Juniper" for product "Junos" and version "14.1"		r2		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				14.1 Search vendor "Juniper" for product "Junos" and version "14.1"		r3		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				14.1 Search vendor "Juniper" for product "Junos" and version "14.1"		r4		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				14.1 Search vendor "Juniper" for product "Junos" and version "14.1"		r5		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				14.1 Search vendor "Juniper" for product "Junos" and version "14.1"		r6		Affected
Juniper Search vendor "Juniper"		Junos Search vendor "Juniper" for product "Junos"				14.1 Search vendor "Juniper" for product "Junos" and version "14.1"		r7		Affected