CVE-2021-0204Execution with Unnecessary Privileges in Networks Junos OS

CWE-250Execution with Unnecessary PrivilegesCWE-269Improper Privilege ManagementCWE-200Sensitive Information Exposure4 documents4 sources
Severity
7.8HIGHNVD
EPSS
0.0%
top 92.94%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Juniper Networks Junos OSJuniper Junos
Timeline
PublishedJan 15
Latest updateMay 24

Description

A sensitive information disclosure vulnerability in delta-export configuration utility (dexp) of Juniper Networks Junos OS may allow a locally authenticated shell user the ability to create and read database files generated by the dexp utility, including password hashes of local users. Since dexp is shipped with setuid permissions enabled and is owned by the root user, this vulnerability may allow a local privileged user the ability to run dexp with root privileges and access sensitive informati

CVSS vector

CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:HExploitability: 1.8 | Impact: 5.9

Affected Packages2 packages

CVEListV5juniper_networks/junos_os15.115.1R7-S8+14
NVDjuniper/junos13 versions+12

🔴Vulnerability Details

2
GHSA
GHSA-fm24-2jhw-cp33: A sensitive information disclosure vulnerability in delta-export configuration utility (dexp) of Juniper Networks Junos OS may allow a locally authent2022-05-24
CVEList
Junos OS: dexp Local Privilege Escalation vulnerabilities in SUID binaries2021-01-15

📋Vendor Advisories

1
Juniper
CVE-2021-0204: A sensitive information disclosure vulnerability in delta-export configuration utility (dexp) of Juniper Networks Junos OS may allow a locally authent2021-01-15
CVE-2021-0204 — Execution with Unnecessary Privileges | cvebase