CVE-2017-2320

Name of the Vulnerable Software and Affected Versions Juniper Networks NorthStar Controller Application versions prior to 2.1.0 Service Pack 1

Description The issue is related to inadequate access control in the NorthStar Controller Application, which may allow an unauthenticated, unprivileged, network-based attacker to cause various denials of service. This could lead to targeted information disclosure, modification of any component of the NorthStar system, including managed systems, and full denial of services to any systems under management. The attacker could exploit this issue to disrupt services or gain access to sensitive information.

Recommendations For versions prior to 2.1.0 Service Pack 1, update to version 2.1.0 Service Pack 1 or later to resolve the issue. As a temporary workaround, consider restricting access to the NorthStar Controller Application to minimize the risk of exploitation.