CVE-2017-10622

CWE-287Improper Authentication4 documents4 sources
Severity
9.8CRITICAL
EPSS
21.5%
top 4.28%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Juniper Networks Junos SpaceJuniper Junos Space
Timeline
PublishedOct 13
Latest updateMay 13

Description

An authentication bypass vulnerability in Juniper Networks Junos Space Network Management Platform may allow a remote unauthenticated network based attacker to login as any privileged user. This issue only affects Junos Space Network Management Platform 17.1R1 without Patch v1 and 16.1 releases prior to 16.1R3. This issue was found by an external security researcher.

CVSS vector

CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 3.9 | Impact: 5.9

Affected Packages2 packages

CVEListV5juniper_networks/junos_space16.1 releases prior to 16.1R3, 17.1R1 without Patch-v1+1
NVDjuniper/junos_space16.1, 17.1+1

🔴Vulnerability Details

2
GHSA
GHSA-6j2w-hj4v-3x7g: An authentication bypass vulnerability in Juniper Networks Junos Space Network Management Platform may allow a remote unauthenticated network based at2022-05-13
CVEList
Junos Space: Authentication bypass vulnerability2017-10-13

📋Vendor Advisories

1
Juniper
CVE-2017-10622: An authentication bypass vulnerability in Juniper Networks Junos Space Network Management Platform may allow a remote unauthenticated network based at2017-10-13
CVE-2017-10622 (CRITICAL CVSS 9.8) | An authentication bypass vulnerabil | cvebase.io