CVE-2018-0010 — Improper Privilege Management in Juniper Junos Space
Severity
6.5MEDIUMNVD
EPSS
0.1%
top 65.26%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
Timeline
PublishedJan 10
Latest updateOct 28
Description
A vulnerability in the Juniper Networks Junos Space Security Director allows a user who does not have SSH access to a device to reuse the URL that was created for another user to perform SSH access. Affected releases are all versions of Junos Space Security Director prior to 17.2R1.
CVSS vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:NExploitability: 2.8 | Impact: 3.6
Affected Packages1 packages
Patches
🔴Vulnerability Details
3GHSA▶
GHSA-mqj9-7x6g-mr5p: A vulnerability in the Juniper Networks Junos Space Security Director allows a user who does not have SSH access to a device to reuse the URL that was↗2022-05-13
CVEList▶
CVE-2018-0010: A vulnerability in the Juniper Networks Junos Space Security Director allows a user who does not have SSH access to a device to reuse the URL that was↗2018-01-10
💥Exploits & PoCs
2📋Vendor Advisories
5Juniper▶
CVE-2018-0010: A vulnerability in the Juniper Networks Junos Space Security Director allows a user who does not have SSH access to a device to reuse the URL that was↗2018-01-10