CVE-2021-0220

Published: Jan 15, 2021Modified: Nov 21, 2024

6.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:N/A:N

Exploitability: 2.3 / Impact: 4.0

Source: sirt@juniper.net (Secondary)

Description

The Junos Space Network Management Platform has been found to store shared secrets in a recoverable format that can be exposed through the UI. An attacker who is able to execute arbitrary code in the victim browser (for example via XSS) or access cached contents may be able to obtain a copy of credentials managed by Junos Space. The impact of a successful attack includes, but is not limited to, obtaining access to other servers connected to the Junos Space Management Platform. This issue affects Juniper Networks Junos Space versions prior to 20.3R1.

Affected (44)

Products: Juniper: Junos Space

Juniper

1 product

Junos Space

Configuration A

44 vulnerable

Vulnerable Software	Affected Versions
Juniper Junos Space	Version 1.0
Juniper Junos Space	Version 1.1
Juniper Junos Space	Version 1.2
Juniper Junos Space	Version 1.3
Juniper Junos Space	Version 1.4
Juniper Junos Space	Version 11.1
Juniper Junos Space	Version 11.2
Juniper Junos Space	Version 11.3
Juniper Junos Space	Version 11.4
Juniper Junos Space	Version 12.1
Juniper Junos Space	Version 12.2
Juniper Junos Space	Version 12.3
Juniper Junos Space	Version 13.1
Juniper Junos Space	Version 13.1 r1.8
Juniper Junos Space	Version 13.3 r3
Juniper Junos Space	Version 14.1
Juniper Junos Space	Version 15.1
Juniper Junos Space	Version 15.1 r2
Juniper Junos Space	Version 15.1 r4
Juniper Junos Space	Version 15.2
Juniper Junos Space	Version 16.1
Juniper Junos Space	Version 17.1
Juniper Junos Space	Version 17.2
Juniper Junos Space	Version 17.2 r1.4
Juniper Junos Space	Version 18.1
Juniper Junos Space	Version 18.1r1
Juniper Junos Space	Version 18.2
Juniper Junos Space	Version 18.3
Juniper Junos Space	Version 18.4
Juniper Junos Space	Version 19.1
Juniper Junos Space	Version 2.0
Juniper Junos Space	Version 15.1 r1
Juniper Junos Space	Version 15.2 r1
Juniper Junos Space	Version 16.1
Juniper Junos Space	Version 17.2
Juniper Junos Space	Version 18.1 r1
Juniper Junos Space	Version 18.2 r1
Juniper Junos Space	Version 18.3 r1
Juniper Junos Space	Version 18.4 r1
Juniper Junos Space	Version 19.1 r1
Juniper Junos Space	Version 19.2 r1
Juniper Junos Space	Version 19.3 r1
Juniper Junos Space	Version 19.4 r1
Juniper Junos Space	Version 20.1 r1

Related CWEs

CWE-257

Storing Passwords in a Recoverable Format

The storage of passwords in a recoverable format makes them subject to password reuse attacks by malicious users. In fact, it should be noted that recoverable encrypted passwords provide no significant benefit over plaintext passwords since they are subject not only to reuse by malicious attackers but also by malicious insiders. If a system administrator can recover a password directly, or use a brute force search on the available information, the administrator can use the password on other accounts.

CWE-522

Insufficiently Protected Credentials

The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.

References (2)

https://kb.juniper.net/JSA11110

Source: sirt@juniper.net

Vendor Advisory

https://kb.juniper.net/JSA11110

Source: af854a3a-2127-422b-91ae-364da2661108

Vendor Advisory

Timeline

No history available yet.