← Back

CVE-2016-1279

nvd nist
Published: Sep 9, 2016Modified: May 6, 2026

JSON object

Loading...
9.8
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

J-Web in Juniper Junos OS before 12.1X46-D45, 12.1X46-D50, 12.1X47 before 12.1X47-D35, 12.3 before 12.3R12, 12.3X48 before 12.3X48-D25, 13.3 before 13.3R10, 13.3R9 before 13.3R9-S1, 14.1 before 14.1R7, 14.1X53 before 14.1X53-D35, 14.2 before 14.2R6, 15.1 before 15.1A2 or 15.1F4, 15.1X49 before 15.1X49-D30, and 15.1R before 15.1R3 might allow remote attackers to obtain sensitive information and consequently gain administrative privileges via unspecified vectors.

Affected (64)

Products: Juniper: Junos
Juniper
1 product
Junos
Configuration A
64 vulnerable
Vulnerable SoftwareAffected Versions
Juniper
Junos
Up to 12.1x46
Junos
Version 12.1x46 d50
Junos
Version 12.1x47
Junos
Version 12.1x47 d10
Junos
Version 12.1x47 d15
Junos
Version 12.1x47 d20
Junos
Version 12.1x47 d25
Junos
Version 12.1x47 d30
Junos
Version 12.3
Junos
Version 12.3 r10
Junos
Version 12.3 r11
Junos
Version 12.3 r1
Junos
Version 12.3 r2
Junos
Version 12.3 r3
Junos
Version 12.3 r4
Junos
Version 12.3 r5
Junos
Version 12.3 r6
Junos
Version 12.3 r7
Junos
Version 12.3 r8
Junos
Version 12.3 r9
Junos
Version 12.3x48 d10
Junos
Version 12.3x48 d15
Junos
Version 13.3
Junos
Version 13.3 r1
Junos
Version 13.3 r2-s2
Junos
Version 13.3 r2
Junos
Version 13.3 r3
Junos
Version 13.3 r4
Junos
Version 13.3 r5
Junos
Version 13.3 r6
Junos
Version 13.3 r7
Junos
Version 13.3 r8
Junos
Version 13.3 r9
Junos
Version 14.1
Junos
Version 14.1 r1
Junos
Version 14.1 r2
Junos
Version 14.1 r3
Junos
Version 14.1 r4
Junos
Version 14.1 r5
Junos
Version 14.1 r6
Junos
Version 14.1x53
Junos
Version 14.1x53 d10
Junos
Version 14.1x53 d15
Junos
Version 14.1x53 d16
Junos
Version 14.1x53 d25
Junos
Version 14.1x53 d26
Junos
Version 14.1x53 d27
Junos
Version 14.1x53 d30
Junos
Version 14.2 r1
Junos
Version 14.2 r2
Junos
Version 14.2 r3
Junos
Version 14.2 r4
Junos
Version 14.2 r5
Junos
Version 15.1 a1
Junos
Version 15.1 f2-s1
Junos
Version 15.1 f2-s2
Junos
Version 15.1 f2-s3
Junos
Version 15.1 f2-s4
Junos
Version 15.1 f2
Junos
Version 15.1 f3
Junos
Version 15.1 r1
Junos
Version 15.1 r2
Junos
Version 15.1x49 d10
Junos
Version 15.1x49 d20

Related CWEs

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.
CWE-287
Improper Authentication
When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (6)

Source: cve@mitre.org
Vendor Advisory
Source: cve@mitre.org
Source: cve@mitre.org
Source: af854a3a-2127-422b-91ae-364da2661108
Vendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.