Juniper Junos 12.1X44 prior to 12.1X44-D45, 12.1X46 prior to 12.1X46-D25, 12.1X47 prior to 12.1X47-D15, 12.3 prior to 12.3R9, 13.1 prior to 13.1R4-S3, 13.2 prior to 13.2R6, 13.3 prior to 13.3R5, 14.1 prior to 14.1R3, and 14.2 prior to 14.2R1 does not properly handle double quotes in authorization attributes in the TACACS+ configuration, which allows local users to bypass the security policy and execute commands via unspecified vectors.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
juniper junos 12.1x47 |
||
juniper junos 12.3 |
||
juniper junos 13.2 |
||
juniper junos 12.1x44 |
||
juniper junos 13.1 |
||
juniper junos 12.1x46 |
||
juniper junos 13.3 |
||
juniper junos 14.1 |
||
juniper junos 14.2 |