CVE-2019-0022

Name of the Vulnerable Software and Affected Versions Juniper Networks Juniper ATP versions prior to 5.0.3

Description The issue is related to hard-coded credentials in the Cyphort Core instance of Juniper ATP, allowing an attacker to gain full control of the software. It is also described as a vulnerability where the same passwords are used for multiple pre-installed registration data, which can be exploited by a remote attacker to elevate privileges and execute arbitrary code.

Recommendations For versions prior to 5.0.3, update to version 5.0.3 or later to resolve the issue.