CVE-2020-1676

Name of the Vulnerable Software and Affected Versions Juniper Networks Mist Cloud UI versions prior to September 2 2020

Description The issue arises when SAML authentication is enabled, and the Juniper Networks Mist Cloud UI incorrectly handles SAML responses. This allows a remote attacker to modify a valid SAML response without invalidating its cryptographic signature, thereby bypassing SAML authentication security controls.

Recommendations For versions prior to September 2 2020, update to a version released after September 2 2020 to resolve the issue. As a temporary workaround, consider disabling SAML authentication until a patch is available. Restrict access to the Mist Cloud UI to minimize the risk of exploitation.