PT-2019-1173 · Juniper Networks · Juniper Advanced Threat Prevention

Published

2019-01-09

Updated

2019-10-09

CVE-2019-0021

CVSS v3.1

7.1

High

Vector

AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:N

Name of the Vulnerable Software and Affected Versions Juniper Advanced Threat Prevention versions prior to 5.0.4

Description The issue is related to the storage of a secret passphrase in clear text in the /var/log/syslog file. This could allow an authenticated local user to view sensitive information. The set mcm command is an example of a CLI input that is logged in clear text.

Recommendations For Juniper Advanced Threat Prevention versions prior to 5.0.4, update to version 5.0.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the /var/log/syslog file to minimize the risk of exploitation. Avoid using the set mcm command until the issue is resolved.

Fix

Information Disclosure

Insertion into Log File

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-200CWE-532

Related Identifiers

BDU:2019-00240

CVE-2019-0021

Affected Products

Juniper Advanced Threat Prevention

PT-2019-1173 · Juniper Networks · Juniper Advanced Threat Prevention

CVE-2019-0021

Weakness Enumeration

Related Identifiers

Affected Products

References · 6