Vulmon Recent Vulnerabilities Research Posts Trends Blog About Contact
NA

CVE-2019-0034

Published: 10/04/2019 Updated: 07/11/2023

Vulnerability Summary

Rejected reason: DO NOT USE THIS CANDIDATE NUMBER. Reason: This candidate was withdrawn by its CNA. Further investigation showed that it was not a vulnerability. Notes: Google gRPC credentials were found which existed for specific internal product testing purposes which are not used as part of production releases of Junos OS. Hence this is not a vulnerability and this CVE ID assignment has been withdrawn

Vulnerability Trend

Recent Articles

Juniper slips out update after hardcoded credentials left in switches
The Register • Shaun Nichols in San Francisco • 11 Apr 2019

Telemetry Interface blamed for exposed gRPC passwords

Juniper Networks has issued an update after finding hardcoded credentials had been left in some of its datacenter switches. The exposed login, designated CVE-2019-0034, was found in the Junos Network Agent, a software tool used to manage sensors and other devices that monitor network performance. Specifically, hardcoded credentials were found in Google gRPC, a component used with the Junos Telemetry Interface. "Configuration files used by gRPC were found to contain hardcoded credentials that cou...

Read more...

References

https://nvd.nist.govhttps://www.theregister.co.uk/2019/04/11/juniper_hardcoded_credentials/
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-4040privilege escalationCVE-2024-4112CVE-2024-32872man-in-the-middleCVE-2024-32788bypassCVE-2024-3400CVE-2024-28976
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started

Vulmon Search

Vulmon Search is a vulnerability search engine. It gives comprehensive vulnerability information through a very simple user interface.

About

Home Recent Vulnerabilities Research Posts Trends Blog About Contact

Products

Vulmon Search Vulmon Research Vulmon Alerts Vulmap

Connect

Twitter Reddit Linkedin Facebook