← Back

CVE-2018-0001

nvd nist
Published: Jan 10, 2018Modified: Nov 21, 2024

JSON object

Loading...
9.8
Vector
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Exploitability: 3.9 / Impact: 5.9
Source: NVD

Description

A remote, unauthenticated attacker may be able to execute code by exploiting a use-after-free defect found in older versions of PHP through injection of crafted data via specific PHP URLs within the context of the J-Web process. Affected releases are Juniper Networks Junos OS: 12.1X46 versions prior to 12.1X46-D67; 12.3 versions prior to 12.3R12-S5; 12.3X48 versions prior to 12.3X48-D35; 14.1 versions prior to 14.1R8-S5, 14.1R9; 14.1X53 versions prior to 14.1X53-D44, 14.1X53-D50; 14.2 versions prior to 14.2R7-S7, 14.2R8; 15.1 versions prior to 15.1R3; 15.1X49 versions prior to 15.1X49-D30; 15.1X53 versions prior to 15.1X53-D70.

Affected (67)

Products: Juniper: Junos
Juniper
1 product
Junos
Configuration A
12 vulnerable
Vulnerable SoftwareAffected Versions
Juniper
Junos
Version 12.1x46 d10
Junos
Version 12.1x46 d15
Junos
Version 12.1x46 d20
Junos
Version 12.1x46 d25
Junos
Version 12.1x46 d30
Junos
Version 12.1x46 d35
Junos
Version 12.1x46 d40
Junos
Version 12.1x46 d45
Junos
Version 12.1x46 d50
Junos
Version 12.1x46 d55
Junos
Version 12.1x46 d60
Junos
Version 12.1x46 d65
Configuration B
5 vulnerable
Vulnerable SoftwareAffected Versions
Juniper
Junos
Version 12.3x48 d10
Junos
Version 12.3x48 d15
Junos
Version 12.3x48 d20
Junos
Version 12.3x48 d25
Junos
Version 12.3x48 d30
Configuration C
3 vulnerable
Vulnerable SoftwareAffected Versions
Juniper
Junos
Version 15.1x49 d10
Junos
Version 15.1x49 d20
Junos
Version 15.1x49 d30
Configuration D
11 vulnerable
Vulnerable SoftwareAffected Versions
Juniper
Junos
Version 15.1x53 d20
Junos
Version 15.1x53 d21
Junos
Version 15.1x53 d25
Junos
Version 15.1x53 d30
Junos
Version 15.1x53 d32
Junos
Version 15.1x53 d33
Junos
Version 15.1x53 d34
Junos
Version 15.1x53 d60
Junos
Version 15.1x53 d61
Junos
Version 15.1x53 d62
Junos
Version 15.1x53 d63
Configuration E
7 vulnerable
Vulnerable SoftwareAffected Versions
Juniper
Junos
Version 14.1
Junos
Version 14.1 r1
Junos
Version 14.1 r2
Junos
Version 14.1 r3
Junos
Version 14.1 r4
Junos
Version 14.1 r8
Junos
Version 14.1 r9
Configuration F
7 vulnerable
Vulnerable SoftwareAffected Versions
Juniper
Junos
Version 14.2 r1
Junos
Version 14.2 r2
Junos
Version 14.2 r3
Junos
Version 14.2 r4
Junos
Version 14.2 r5
Junos
Version 14.2 r7
Junos
Version 14.2 r8
Configuration G
2 vulnerable
Vulnerable SoftwareAffected Versions
Juniper
Junos
Version 15.1 r1
Junos
Version 15.1 r2
Configuration H
11 vulnerable
Vulnerable SoftwareAffected Versions
Juniper
Junos
Version 12.3
Junos
Version 12.3 r10
Junos
Version 12.3 r1
Junos
Version 12.3 r2
Junos
Version 12.3 r3
Junos
Version 12.3 r4
Junos
Version 12.3 r5
Junos
Version 12.3 r6
Junos
Version 12.3 r7
Junos
Version 12.3 r8
Junos
Version 12.3 r9
Configuration I
9 vulnerable
Vulnerable SoftwareAffected Versions
Juniper
Junos
Version 14.1x53
Junos
Version 14.1x53 d10
Junos
Version 14.1x53 d15
Junos
Version 14.1x53 d16
Junos
Version 14.1x53 d25
Junos
Version 14.1x53 d26
Junos
Version 14.1x53 d27
Junos
Version 14.1x53 d35
Junos
Version 14.1x53 d50

Related CWEs

CWE-416
Use After Free
The product reuses or references memory after it has been freed. At some point afterward, the memory may be allocated again and saved in another pointer, while the original pointer references a location somewhere within the new allocation. Any operations using the original pointer are no longer valid because the memory "belongs" to the code that operates on the new pointer.

References (6)

Source: sirt@juniper.net
Source: sirt@juniper.net
Third Party AdvisoryVDB Entry
Source: sirt@juniper.net
MitigationPatchVendor Advisory
Source: af854a3a-2127-422b-91ae-364da2661108
Source: af854a3a-2127-422b-91ae-364da2661108
Third Party AdvisoryVDB Entry
Source: af854a3a-2127-422b-91ae-364da2661108
MitigationPatchVendor Advisory

Timeline

No history available yet.