#VU49554 Information disclosure in Juniper Junos OS


Published: 2021-01-15

Vulnerability identifier: #VU49554

Vulnerability risk: Medium

CVSSv3.1: 6.5 [CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:U/RL:O/RC:C]

CVE-ID: CVE-2021-0210

CWE-ID: CWE-200

Exploitation vector: Network

Exploit availability: No

Vulnerable software:
Juniper Junos OS
Operating systems & Components / Operating system

Vendor: Juniper Networks, Inc.

Description

The vulnerability allows a remote attacker to gain access to potentially sensitive information.

The vulnerability exists due to excessive data output in J-Web. A remote non-authenticated attacker can elevate privileges over the target system through opportunistic use of an authenticated users session.

Mitigation

Install updates from vendor's website.

This issue affects:

Juniper Networks Junos OS

  • 12.3 versions prior to 12.3R12-S17;
  • 17.3 versions prior to 17.3R3-S10;
  • 17.4 versions prior to 17.4R2-S12, 17.4R3-S3;
  • 18.1 versions prior to 18.1R3-S11;
  • 18.2 versions prior to 18.2R3-S6;
  • 18.3 versions prior to 18.3R2-S4, 18.3R3-S4;
  • 18.4 versions prior to 18.4R2-S5, 18.4R3-S5;
  • 19.1 versions prior to 19.1R1-S6, 19.1R2-S2, 19.1R3-S3;
  • 19.2 versions prior to 19.2R1-S5, 19.2R3, 19.2R3-S1;
  • 19.3 versions prior to 19.3R2-S4, 19.3R3;
  • 19.4 versions prior to 19.4R1-S3, 19.4R2-S2, 19.4R3;
  • 20.1 versions prior to 20.1R1-S4, 20.1R2;
  • 20.2 versions prior to 20.2R1-S1, 20.2R2.

Vulnerable software versions

Juniper Junos OS: 18.3 - 18.3R3-S3, 18.3R2-S3, 18.3R3-S1, 20.3, 20.2 - 20.2R1-S3, 19.4 - 19.4R2-S8, 19.4R1 - 19.4R1-S4, 19.2 - 19.2R2-S1, 19.2R1-S4, 19.1 - 19.1R3-S2, 19.1R1-S4, 17.4 - 17.4R3-S2, 17.4R2-S9, 17.3 - 17.3R3-S9, 15.1 - 15.1R7-S7, 15.1F - 15.1F7-S2, 20.1 - 20.1R1-S3, 18.2 - 18.2R3-S5, 12.3 - 12.3R12-S16, 18.1 - 18.1R3-S10, 18.4 - 18.4R3-S4, 18.4R1-S5, 18.4R2-S3, 19.3 - 19.3R1, 19.3R1-S1, 19.3R2 - 19.3R2-S7

External links
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA11100&cat=SIRT_1&actp=LIST

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability.


Latest bulletins with this vulnerability


Information disclosure in Junos OS J-Web