Juniper Junos Space prior to 13.1R1.6, as used on the JA1500 appliance and in other contexts, does not properly implement role-based access control, which allows remote authenticated users to modify the configuration by leveraging the read-only privilege, aka PR 863804.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
juniper junos_space 11.4 |
||
juniper junos_space 12.1 |
||
juniper junos_space 11.2 |
||
juniper junos_space 11.3 |
||
juniper junos_space 11.1 |
||
juniper junos_space 12.2 |
||
juniper junos_space 12.3 |
||
juniper junos_space_virtual_appliance - |
||
juniper junos_space_ja1500_appliance - |