Juniper Northstar Controller vulnerabilities

CVE-2017-2320 [CRITICAL] CWE-200 CVE-2017-2320: A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, unprivileged, network-based attacker to cause various denials of services leading to targeted information disclosure, modification of any component of the NorthStar system, including managed systems, and full denial

CVE-2017-2317 [HIGH] CWE-200 CVE-2017-2317: A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to vers A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, unprivileged, network-based attacker to cause denials of services to underlying database tables leading to potential information disclosure, modification of system states, and partial to full denial o

CVE-2017-2319 [HIGH] CWE-287 CVE-2017-2319: A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a malicious attacker to compromise the systems confidentiality or integrity without authentication, leading to managed systems being compromised or services being denied to authentic end users and systems as a result.

CVE-2017-2321 [HIGH] CVE-2017-2321: A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, unprivileged, network-based attacker to cause various system services partial to full denials of services, modification of system states and files, and potential disclosure of sensitive information which may assist the attacker

CVE-2017-2334 [HIGH] CWE-200 CVE-2017-2334: An information leak vulnerability in Juniper Networks NorthStar Controller Application prior to vers An information leak vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a network-based malicious attacker to perform a man-in-the-middle attack, thereby stealing authentic credentials from encrypted paths which are easily decrypted, and subsequently gain complete control of the system.

CVE-2017-2331 [HIGH] CVE-2017-2331: A firewall bypass vulnerability in Juniper Networks NorthStar Controller Application prior to versio A firewall bypass vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a network-based malicious attacker to bypass firewall policies, leading to authentication bypass methods, information disclosure, modification of system files, and denials of service.

CVE-2017-2332 [HIGH] CWE-287 CVE-2017-2332: An insufficient authentication vulnerability in Juniper Networks NorthStar Controller Application pr An insufficient authentication vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a malicious, network based, unauthenticated attacker to perform privileged actions to gain complete control over the environment.

CVE-2017-2323 [HIGH] CVE-2017-2323: A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to vers A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a malicious attacker crafting packets destined to the device to cause a persistent denial of service to the path computation server service.

CVE-2017-2325 [MEDIUM] CWE-119 CVE-2017-2325: A buffer overflow vulnerability in Juniper Networks NorthStar Controller Application prior to versio A buffer overflow vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an authenticated malicious user to cause a buffer overflow leading to a denial of service.

CVE-2017-2328 [MEDIUM] CWE-200 CVE-2017-2328: An information leak vulnerability in Juniper Networks NorthStar Controller Application prior to vers An information leak vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unprivileged, authenticated, user to elevate their permissions through reading unprivileged information stored in the NorthStar controller.

CVE-2017-2324 [MEDIUM] CWE-77 CVE-2017-2324: A command injection vulnerability in Juniper Networks NorthStar Controller Application prior to vers A command injection vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a network-based malicious attacker to cause a denial of service condition.

CVE-2017-2333 [MEDIUM] CWE-400 CVE-2017-2333: A persistent denial of service vulnerability in Juniper Networks NorthStar Controller Application pr A persistent denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a malicious, network-based, authenticated attacker to consume enough system resources to cause a persistent denial of service by visiting certain specific URLs on the server.

CVE-2017-2330 [MEDIUM] CWE-834 CVE-2017-2330: A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to vers A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, local user, to create a fork bomb scenario, also known as a rabbit virus, or wabbit, which will create processes that replicate themselves, until all resources are consumed on the system, leading to

CVE-2017-2327 [MEDIUM] CWE-400 CVE-2017-2327: A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to vers A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an authenticated malicious user to consume large amounts of system resources leading to a cascading denial of services.

CVE-2017-2322 [MEDIUM] CWE-400 CVE-2017-2322: A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to vers A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1, may allow an authenticated user to cause widespread denials of service to system services by consuming TCP and UDP ports which are normally reserved for other system services.

CVE-2017-2318 [MEDIUM] CWE-200 CVE-2017-2318: A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an authenticated malicious user to read log files which will compromise the integrity of the system, or provide elevation of privileges.

CVE-2017-2329 [MEDIUM] CWE-287 CVE-2017-2329: An insufficient authentication vulnerability in Juniper Networks NorthStar Controller Application pr An insufficient authentication vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unprivileged, authenticated, user to execute certain specific unprivileged system files capable of causing widespread denials of system services.

CVE-2017-2316 [MEDIUM] CWE-119 CVE-2017-2316: A buffer overflow vulnerability in Juniper Networks NorthStar Controller Application prior to versio A buffer overflow vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an authenticated malicious user to cause a buffer overflow leading to a denial of service.

CVE-2017-2326 [MEDIUM] CWE-200 CVE-2017-2326: An information disclosure vulnerability in Juniper Networks NorthStar Controller Application prior t An information disclosure vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unprivileged, authenticated, network-based attacker to replicate the underlying Junos OS VM and all data it maintains to their local system for future analysis.