An Exposure of Sensitive Information vulnerability in the 'file copy' command of Junos OS Evolved allows a local, authenticated attacker with shell access to view passwords supplied on the CLI command-line. These credentials can then be used to provide unauthorized access to the remote system. This issue affects Juniper Networks Junos OS Evolved: * All versions before 20.4R3-S7-EVO; * 21.1 versions 21.1R1-EVO and later; * 21.2 versions before 21.2R3-S5-EVO; * 21.3 versions before 21.3R3-S4-EVO; * 21.4 versions before 21.4R3-S4-EVO; * 22.1 versions before 22.1R3-S2-EVO; * 22.2 versions before 22.2R2-EVO.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
juniper junos os evolved 20.4 |
||
juniper junos os evolved 21.1 |
||
juniper junos os evolved 21.2 |
||
juniper junos os evolved 21.3 |
||
juniper junos os evolved |
||
juniper junos os evolved 21.4 |
||
juniper junos os evolved 22.1 |
||
juniper junos os evolved 22.2 |