On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authorization check, readonly users on the Junos Space administrative web interface can create privileged users, allowing privilege escalation.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/98759 | Third Party Advisory VDB Entry |
https://kb.juniper.net/JSA10770 | Mitigation Vendor Advisory |
Configurations
History
No history.
Information
Published : 2017-05-30 14:29
Updated : 2024-02-28 16:04
NVD link : CVE-2017-2305
Mitre link : CVE-2017-2305
CVE.ORG link : CVE-2017-2305
JSON object : View
Products Affected
juniper
- junos_space
CWE
CWE-863
Incorrect Authorization