PT-2017-11400 · Juniper Networks · Junos
Published
2017-07-14
·
Updated
2019-10-09
·
CVE-2017-10603
CVSS v3.1
7.8
High
| Vector | AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
Junos OS versions prior to 15.1X53-D47
Junos OS versions 15.1 prior to 15.1R3
Description
An XML injection issue in the Junos OS CLI allows a locally authenticated user to elevate privileges and execute arbitrary commands as the root user. This was discovered during internal product security testing.
Recommendations
For Junos OS versions prior to 15.1X53-D47, update to version 15.1X53-D47 or later.
For Junos OS versions 15.1 prior to 15.1R3, update to version 15.1R3 or later.
Fix
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Junos