CVE-2018-0053

Published: Oct 10, 2018Modified: Nov 21, 2024

6.8

Vector

CVSS:3.0/AV:P/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H

Exploitability: 0.9 / Impact: 5.9

Source: NVD

Description

An authentication bypass vulnerability in the initial boot sequence of Juniper Networks Junos OS on vSRX Series may allow an attacker to gain full control of the system without authentication when the system is initially booted up. Affected releases are Juniper Networks Junos OS: 15.1X49 versions prior to 15.1X49-D30 on vSRX.

Affected (3)

Products: Juniper: Junos

1 product

Configuration A

3 vulnerable · 1 platform

Vulnerable Software	Affected Versions
Juniper Junos	Version 15.1x49
Juniper Junos	Version 15.1x49 d10
Juniper Junos	Version 15.1x49 d20

Running on/with	Platform Versions
Juniper Vsrx	All versions

Related CWEs

Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

References (4)

http://www.securitytracker.com/id/1041854

Source: sirt@juniper.net

Third Party AdvisoryVDB Entry

https://kb.juniper.net/JSA10887

Source: sirt@juniper.net

Vendor Advisory

http://www.securitytracker.com/id/1041854

Source: af854a3a-2127-422b-91ae-364da2661108

Third Party AdvisoryVDB Entry

https://kb.juniper.net/JSA10887

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.