CVE-2021-31380
published 2021-10-19CVE-2021-31380: A configuration weakness in the JBoss Application Server (AppSvr) component of Juniper Networks SRC Series allows a remote attacker to send a specially crafted…
medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
A configuration weakness in the JBoss Application Server (AppSvr) component of Juniper Networks SRC Series allows a remote attacker to send a specially crafted query to cause the web server to disclose sensitive information in the HTTP response which allows the attacker to obtain sensitive information.
Affected
4 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| juniper | session_and_resource_control | < 4.12.0r5 | 4.12.0r5 |
| juniper | session_and_resource_control | >= 4.13.0r1 < 4.13.0r3 | 4.13.0r3 |
| juniper_networks | src_series | >= 4.13.0 < 4.13.0R3 | 4.13.0R3 |
| juniper_networks | src_series | >= unspecified < 4.12.0R5 | 4.12.0R5 |