PT-2019-4133 · Juniper Networks · Sbr Carrier

Publicado

2019-10-09

Atualizado

2019-10-21

CVE-2019-0072

CVSS v3.1

5.6

Média

Vetor

AV:L/AC:H/PR:L/UI:N/S:C/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Juniper Networks SBR Carrier versions 8.4.1 through 8.4.1R12 Juniper Networks SBR Carrier versions 8.5.0 through 8.5.0R3

Description The issue is related to an Unprotected Storage of Credentials vulnerability in the identity and access management certificate generation procedure. This allows a local attacker to gain access to confidential information.

Recommendations For Juniper Networks SBR Carrier versions 8.4.1 through 8.4.1R12, update to version 8.4.1R13 or later. For Juniper Networks SBR Carrier versions 8.5.0 through 8.5.0R3, update to version 8.5.0R4 or later.

Correção

Insufficiently Protected Credentials

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-522CWE-256

Identificadores relacionados

BDU:2019-04713

CVE-2019-0072

Produtos afetados

Sbr Carrier

PT-2019-4133 · Juniper Networks · Sbr Carrier

CVE-2019-0072

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6