exploitDog

CVE-2017-2309

Опубликовано: 30 мая 2017

Источник: nvd

CVSS3: 5.9

CVSS2: 4.3

EPSS Низкий

Описание

On Juniper Networks Junos Space versions prior to 16.1R1 when certificate based authentication is enabled for the Junos Space cluster, some restricted web services are accessible over the network. This represents an information leak risk.

Ссылки

http://www.securityfocus.com/bid/98750
Third Party Advisory
VDB Entry
https://kb.juniper.net/JSA10770
Mitigation
Vendor Advisory
http://www.securityfocus.com/bid/98750
Third Party Advisory
VDB Entry
https://kb.juniper.net/JSA10770
Mitigation
Vendor Advisory

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:juniper:junos_space:*:*:*:*:*:*:*:*

Версия до 16.1 (включая)

EPSS

Процентиль: 45%

0.00222

Низкий

5.9 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-200

Связанные уязвимости

GHSA-x7wv-hq5r-rg59

CVSS3: 5.9

github

больше 3 лет назад

On Juniper Networks Junos Space versions prior to 16.1R1 when certificate based authentication is enabled for the Junos Space cluster, some restricted web services are accessible over the network. This represents an information leak risk.

EPSS

Процентиль: 45%

0.00222

Низкий

5.9 Medium

CVSS3

4.3 Medium

CVSS2

Дефекты

CWE-200