CVE-2017-10622
Junos Space: Authentication bypass vulnerability
Severity Score
Exploit Likelihood
Affected Versions
Public Exploits
0Exploited in Wild
-Decision
Descriptions
An authentication bypass vulnerability in Juniper Networks Junos Space Network Management Platform may allow a remote unauthenticated network based attacker to login as any privileged user. This issue only affects Junos Space Network Management Platform 17.1R1 without Patch v1 and 16.1 releases prior to 16.1R3. This issue was found by an external security researcher.
Una vulnerabilidad de omisión de autenticación en Juniper Networks Junos Space Network Management Platform puede permitir a un atacante remoto no autenticado en la red iniciar sesión como cualquier usuario privilegiado. Este problema solo afecta a Junos Space Network Management Platform 17.1R1 sin Patch v1 y las distribuciones 16.1 anteriores a la 16.1R3. Un investigador de seguridad externo descubrió este problema.
CVSS Scores
SSVC
- Decision:-
Timeline
- 2017-06-28 CVE Reserved
- 2017-10-13 CVE Published
- 2023-05-08 EPSS Updated
- 2024-09-17 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-287: Improper Authentication
CAPEC
References (2)
| URL | Tag | Source |
|---|---|---|
| http://www.securityfocus.com/bid/101258 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|---|---|
| https://kb.juniper.net/JSA10824 | 2019-10-09 |
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Juniper Search vendor "Juniper" | Junos Space Search vendor "Juniper" for product "Junos Space" | 17.1 Search vendor "Juniper" for product "Junos Space" and version "17.1" | r1 |
Affected
| ||||||
| Juniper Search vendor "Juniper" | Junos Space Search vendor "Juniper" for product "Junos Space" | 16.1 Search vendor "Juniper" for product "Junos Space" and version "16.1" | - |
Affected
| ||||||
| Juniper Search vendor "Juniper" | Junos Space Search vendor "Juniper" for product "Junos Space" | 16.1 Search vendor "Juniper" for product "Junos Space" and version "16.1" | r1 |
Affected
| ||||||
| Juniper Search vendor "Juniper" | Junos Space Search vendor "Juniper" for product "Junos Space" | 16.1 Search vendor "Juniper" for product "Junos Space" and version "16.1" | r2 |
Affected
| ||||||