PT-2014-4610 · Juniper Networks · Junos Pulse Secure Access Service

Published

2014-03-14

Updated

2014-03-17

CVE-2014-2292

CVSS v2.0

7.2

High

Vector

AV:L/AC:L/Au:N/C:C/I:C/A:C

Name of the Vulnerable Software and Affected Versions Junos Pulse Secure Access Service (aka SSL VPN) versions prior to 7.1r18 Junos Pulse Secure Access Service (aka SSL VPN) versions 7.3 before 7.3r10 Junos Pulse Secure Access Service (aka SSL VPN) versions 7.4 before 7.4r8 Junos Pulse Secure Access Service (aka SSL VPN) versions 8.0 before 8.0r1

Description The issue allows local users to gain privileges via unspecified vectors.

Recommendations For versions prior to 7.1r18, update to version 7.1r18 or later. For versions 7.3 before 7.3r10, update to version 7.3r10 or later. For versions 7.4 before 7.4r8, update to version 7.4r8 or later. For versions 8.0 before 8.0r1, update to version 8.0r1 or later.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Related Identifiers

CVE-2014-2292

Affected Products

Junos Pulse Secure Access Service

PT-2014-4610 · Juniper Networks · Junos Pulse Secure Access Service

CVE-2014-2292

Related Identifiers

Affected Products

References · 2