CVE-2017-2308
published 2017-05-30CVE-2017-2308: An XML External Entity Injection vulnerability in Juniper Networks Junos Space versions prior to 16.1R1 may allow an authenticated user to read arbitrary files…
medium6.5CVSS 3.0
AVNACLPRLUINSUCHINAN
An XML External Entity Injection vulnerability in Juniper Networks Junos Space versions prior to 16.1R1 may allow an authenticated user to read arbitrary files on the device.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| juniper | junos_os | — | — |
| juniper | junos_space | <= 16.1 | — |
| juniper | junos_space | — | — |
| juniper_networks | junos_space | — | — |