PT-2017-15347 · Juniper Networks · Northstar Controller Application

Published

2017-04-24

Updated

2019-10-03

CVE-2017-2317

CVSS v3.1

8.6

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:H

Name of the Vulnerable Software and Affected Versions Juniper Networks NorthStar Controller Application versions prior to 2.1.0 Service Pack 1

Description A denial of service issue may allow an unauthenticated, unprivileged, network-based attacker to cause denials of services to underlying database tables, potentially leading to information disclosure, modification of system states, and partial to full denial of services relying upon data modified by an attacker.

Recommendations For versions prior to 2.1.0 Service Pack 1, update to version 2.1.0 Service Pack 1 or later to resolve the issue.

Fix

Information Disclosure

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200

Related Identifiers

CVE-2017-2317

Affected Products

Northstar Controller Application

PT-2017-15347 · Juniper Networks · Northstar Controller Application

CVE-2017-2317

Weakness Enumeration

Related Identifiers

Affected Products

References · 4