CVE-2017-2305
published 2017-05-30CVE-2017-2305: On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authorization check, readonly users on the Junos Space administrative web…
high8.8CVSS 3.0
AVNACLPRLUINSUCHIHAH
On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authorization check, readonly users on the Junos Space administrative web interface can create privileged users, allowing privilege escalation.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| juniper | junos_os | — | — |
| juniper | junos_space | <= 16.1 | — |
| juniper | junos_space | — | — |
| juniper_networks | junos_space | — | — |