CVE-2021-31349
published 2021-10-19CVE-2021-31349: The usage of an internal HTTP header created an authentication bypass vulnerability (CWE-287), allowing an attacker to view internal files, change settings…
PriorityP262critical9.8CVSS 3.1
AVNACLPRNUINSUCHIHAH
EPSS
1.67%
73.8th percentile
The usage of an internal HTTP header created an authentication bypass vulnerability (CWE-287), allowing an attacker to view internal files, change settings, manipulate services and execute arbitrary code. This issue affects all Juniper Networks 128 Technology Session Smart Router versions prior to 4.5.11, and all versions of 5.0 up to and including 5.0.1.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| juniper | 128_technology_session_smart_router_firmware | < 4.5.11 | 4.5.11 |
| juniper | 128_technology_session_smart_router_firmware | 5.0.0 – 5.0.1 | — |
| juniper_networks | 128_technology_session_smart_router | 5.0 – 5.0.1 | — |
| juniper_networks | 128_technology_session_smart_router | >= unspecified < 4.5.11 | 4.5.11 |
Detection & IOCsextracted from sources · hover to see the quote
- →Authentication bypass is achieved via a crafted/abused internal HTTP header — monitor for unexpected or spoofed internal HTTP headers in requests to the 128 Technology Session Smart Router management interface ↗
- ·All versions of Juniper Networks 128 Technology Session Smart Router prior to 4.5.11 are vulnerable, as well as all 5.0 versions up to and including 5.0.1. Ensure patching to 4.5.11+ or 5.0.2+ to remediate. ↗
CVSS provenance
nvdv3.19.8CRITICALCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
GHSA-4r2w-j4p7-rw4p: The usage of an internal HTTP header created an authentication bypass vulnerability (CWE-287), allowing an attacker to view internal files, change set
ghsa_unreviewed·2022-05-24
CVE-2021-31349 [CRITICAL] CWE-287 GHSA-4r2w-j4p7-rw4p: The usage of an internal HTTP header created an authentication bypass vulnerability (CWE-287), allowing an attacker to view internal files, change set
The usage of an internal HTTP header created an authentication bypass vulnerability (CWE-287), allowing an attacker to view internal files, change settings, manipulate services and execute arbitrary code. This issue affects all Juniper Networks 128 Technology Session Smart Router versions prior to 4.5.11, and all versions of 5.0 up to and including 5.0.1.
Juniper
CVE-2021-31349: The usage of an internal HTTP header created an authentication bypass vulnerability (CWE-287), allowing an attacker to view internal files, change set
vendor_juniper·2021-10-19·CVSS 9.8
CVE-2021-31349 [CRITICAL] CWE-287 CVE-2021-31349: The usage of an internal HTTP header created an authentication bypass vulnerability (CWE-287), allowing an attacker to view internal files, change set
CVE-2021-31349: The usage of an internal HTTP header created an authentication bypass vulnerability (CWE-287), allowing an attacker to view internal files, change settings, manipulate services and execute arbitrary code. This issue affects all Juniper Networks 128 Technology Session Smart Router versions prior to 4.5.11, and all versions of 5.0 up to and including 5.0.1.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2021-10-19
Published