Juniper Networks Juniper Identity Management Service vulnerabilities
2 known vulnerabilities affecting juniper_networks/juniper_identity_management_service.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2022-22187HIGHCVSS 7.8≥ unspecified, < 1.4.02022-04-14
CVE-2022-22187 [HIGH] CWE-269 CVE-2022-22187: An Improper Privilege Management vulnerability in the Windows Installer framework used in the Junipe
An Improper Privilege Management vulnerability in the Windows Installer framework used in the Juniper Networks Juniper Identity Management Service (JIMS) allows an unprivileged user to trigger a repair operation. Running a repair operation, in turn, will trigger a number of file operations in the %TEMP% folder of the user triggering the repair. Some o
nvd
CVE-2019-0042MEDIUMCVSS 4.2≥ unspecified, < 1.1.42019-04-10
CVE-2019-0042 [MEDIUM] CWE-305 CVE-2019-0042: Juniper Identity Management Service (JIMS) for Windows versions prior to 1.1.4 may send an incorrect
Juniper Identity Management Service (JIMS) for Windows versions prior to 1.1.4 may send an incorrect message to associated SRX services gateways. This may allow an attacker with physical access to an existing domain connected Windows system to bypass SRX firewall policies, or trigger a Denial of Service (DoS) condition for the network.
nvd