A password management issue exists where the Organization authentication username and password were stored in plaintext in log files. A locally authenticated attacker who is able to access these stored plaintext credentials can use them to login to the Organization. Affected products are: Juniper Networks Service Insight versions from 15.1R1, prior to 18.1R1. Service Now versions from 15.1R1, prior to 18.1R1.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/107885 | Third Party Advisory VDB Entry |
https://kb.juniper.net/JSA10921 | Vendor Advisory |
https://kb.juniper.net/KB27572 | Release Notes Vendor Advisory |
http://www.securityfocus.com/bid/107885 | Third Party Advisory VDB Entry |
https://kb.juniper.net/JSA10921 | Vendor Advisory |
https://kb.juniper.net/KB27572 | Release Notes Vendor Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 04:16
Type | Values Removed | Values Added |
---|---|---|
References | () http://www.securityfocus.com/bid/107885 - Third Party Advisory, VDB Entry | |
References | () https://kb.juniper.net/JSA10921 - Vendor Advisory | |
References | () https://kb.juniper.net/KB27572 - Release Notes, Vendor Advisory |
Information
Published : 2019-04-10 20:29
Updated : 2024-11-21 04:16
NVD link : CVE-2019-0032
Mitre link : CVE-2019-0032
CVE.ORG link : CVE-2019-0032
JSON object : View
Products Affected
juniper
- service_insight
- service_now