PT-2019-3869 · Juniper Networks · Junos

Publicado

2019-10-09

·

Atualizado

2021-02-05

·

CVE-2019-0070

CVSS v3.1

8.8

Alta

VetorAV:L/AC:L/PR:L/UI:N/S:C/C:H/I:H/A:H
Name of the Vulnerable Software and Affected Versions Junos OS versions prior to 18.2R1 on NFX Series.
Description The issue is caused by insufficient input validation, allowing a malicious local attacker to elevate their permissions and execute commands outside their authorized scope of control, potentially leading to full control of the system.
Recommendations For Junos OS versions prior to 18.2R1 on NFX Series, update to version 18.2R1 or later to resolve the issue.

Correção

RCE

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾
dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-20

Identificadores relacionados

BDU:2019-04260
CVE-2019-0070

Produtos afetados

Junos