On Juniper Networks Junos Space versions prior to 16.1R1, due to an insufficient authorization check, readonly users on the Junos Space administrative web interface can create privileged users, allowing privilege escalation.
References
Link | Resource |
---|---|
http://www.securityfocus.com/bid/98759 | Third Party Advisory VDB Entry |
https://kb.juniper.net/JSA10770 | Mitigation Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: juniper
Published: 2017-05-30T14:00:00
Updated: 2017-06-01T09:57:01
Reserved: 2016-12-01T00:00:00
Link: CVE-2017-2305
JSON object: View
NVD Information
Status : Analyzed
Published: 2017-05-30T14:29:00.880
Modified: 2019-10-03T00:03:26.223
Link: CVE-2017-2305
JSON object: View
Redhat Information
No data.
CWE