CVE-2018-0035

  1. OpenCVE
  2. Vulnerabilities (CVE)
  3. CVE-2018-0035
QFX5200 and QFX10002 devices that have been shipped with Junos OS 15.1X53-D21, 15.1X53-D30, 15.1X53-D31, 15.1X53-D32, 15.1X53-D33 and 15.1X53-D60 or have been upgraded to these releases using the .bin or .iso images may contain an unintended additional Open Network Install Environment (ONIE) partition. This additional partition allows the superuser to reboot to the ONIE partition which will wipe out the content of the Junos partition and its configuration. Once rebooted, the ONIE partition will not have root password configured, thus any user can access the console or SSH, using an IP address acquired from DHCP, as root without password. Once the device has been shipped or upgraded with the ONIE partition installed, the issue will persist. Simply upgrading to higher release via the CLI will not resolve the issue. No other Juniper Networks products or platforms are affected by this issue.

4.4 /10

CVSS v3 : MEDIUM

V3 Legend

Vector : AV:L/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H

Exploitability : 0.8 / Impact : 3.6

Attack Vector LOCAL

Attack Complexity LOW

Privileges Required HIGH

User Interaction NONE

Confidentiality Impact NONE

Integrity Impact NONE

Availability Impact HIGH

Scope UNCHANGED

10.0 /10

CVSS v2.0 : HIGH

V2 Legend

Vector : AV:N/AC:L/Au:N/C:C/I:C/A:C

Exploitability : 10.0 / Impact : 10.0

Access Vector NETWORK

Access Complexity LOW

Authentication NONE

Confidentiality Impact COMPLETE

Integrity Impact COMPLETE

Availability Impact COMPLETE

References
Link Resource
http://www.securitytracker.com/id/1041336 Third Party Advisory VDB Entry
https://kb.juniper.net/JSA10869 Vendor Advisory
http://www.securitytracker.com/id/1041336 Third Party Advisory VDB Entry
https://kb.juniper.net/JSA10869 Vendor Advisory
Configurations

Configuration 1 (hide)

AND
OR cpe:2.3:o:juniper:junos:15.1x53:d21:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d30:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d31:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d32:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d33:*:*:*:*:*:*
cpe:2.3:o:juniper:junos:15.1x53:d60:*:*:*:*:*:*
OR cpe:2.3:h:juniper:qfx10002:-:*:*:*:*:*:*:*
cpe:2.3:h:juniper:qfx5200:-:*:*:*:*:*:*:*
History

21 Nov 2024, 03:37

Type Values Removed Values Added
CVSS v2 : 10.0
v3 : 9.8 		v2 : 10.0
v3 : 4.4
References () http://www.securitytracker.com/id/1041336 - Third Party Advisory, VDB Entry () http://www.securitytracker.com/id/1041336 - Third Party Advisory, VDB Entry
References () https://kb.juniper.net/JSA10869 - Vendor Advisory () https://kb.juniper.net/JSA10869 - Vendor Advisory
Information

Published : 2018-07-11 18:29

Updated : 2024-11-21 03:37

NVD link : CVE-2018-0035

Mitre link : CVE-2018-0035

CVE.ORG link : CVE-2018-0035

JSON object : View

Products Affected

juniper

  • qfx5200
  • junos
  • qfx10002
CWE
NVD-CWE-noinfo

NetmanageIT Website NetmanageIT OSINT Web NetmanageIT OpenCTI NetmanageIT PDF Tools NetmanageIT CTO Corner Blog NetmanageIT Email Header Analyzer NetmanageIT Password Pusher NetmanageIT Internet Health and Latency Dashboard NetmanageIT Dedicated Speed Test Site NetmanageIT Ubuntu Mirror 10Gbps Copyright OpenCVE 2024