Описание
Lack of authentication and authorization of cluster messages in Juniper Networks Junos Space may allow a man-in-the-middle type of attacker to intercept, inject or disrupt Junos Space cluster operations between two nodes. Affected releases are Juniper Networks Junos Space all versions prior to 17.1R1.
Ссылки
- Vendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 16.2 (включая)
cpe:2.3:a:juniper:junos_space:*:*:*:*:*:*:*:*
EPSS
Процентиль: 46%
0.00234
Низкий
7.1 High
CVSS3
8.1 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-287
Связанные уязвимости
CVSS3: 8.1
github
больше 3 лет назад
Lack of authentication and authorization of cluster messages in Juniper Networks Junos Space may allow a man-in-the-middle type of attacker to intercept, inject or disrupt Junos Space cluster operations between two nodes. Affected releases are Juniper Networks Junos Space all versions prior to 17.1R1.
EPSS
Процентиль: 46%
0.00234
Низкий
7.1 High
CVSS3
8.1 High
CVSS3
6.8 Medium
CVSS2
Дефекты
CWE-287