CVE-2019-0057

Name of the Vulnerable Software and Affected Versions Juniper Networks Junos OS versions prior to 18.2R1, 18.2X75-D5.

Description An improper authorization weakness in Juniper Networks Junos OS allows a local authenticated attacker to bypass regular security controls to access the Junos Device Manager (JDM) application and take control of the system.

Recommendations For Juniper Networks Junos OS versions prior to 18.2R1, 18.2X75-D5, update to version 18.2R1 or 18.2X75-D5 or later to resolve the issue. As a temporary workaround, consider restricting access to the Junos Device Manager (JDM) application until a patch is available.