Описание
An XML External Entity Injection vulnerability in Juniper Networks Junos Space versions prior to 16.1R1 may allow an authenticated user to read arbitrary files on the device.
Ссылки
- Third Party AdvisoryVDB Entry
- MitigationVendor Advisory
- Third Party AdvisoryVDB Entry
- MitigationVendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 16.1 (включая)
cpe:2.3:a:juniper:junos_space:*:*:*:*:*:*:*:*
EPSS
Процентиль: 51%
0.00276
Низкий
6.5 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-611
Связанные уязвимости
CVSS3: 6.5
github
больше 3 лет назад
An XML External Entity Injection vulnerability in Juniper Networks Junos Space versions prior to 16.1R1 may allow an authenticated user to read arbitrary files on the device.
EPSS
Процентиль: 51%
0.00276
Низкий
6.5 Medium
CVSS3
5 Medium
CVSS2
Дефекты
CWE-611