CVSS2
Attack Vector
LOCAL
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:L/AC:L/Au:N/C:C/I:C/A:C
AI Score
Confidence
Low
EPSS
Percentile
12.6%
The Juniper SRX Series services gateways with Junos OS 12.1X46 before 12.1X46-D35, 12.1X47 before 12.1X47-D25, and 12.3X48 before 12.3X48-D15 do not properly implement the “set system ports console insecure” feature, which allows physically proximate attackers to gain administrative privileges by leveraging access to the console port.
Vendor | Product | Version | CPE |
---|---|---|---|
juniper | junos | 12.1x46 | cpe:2.3:o:juniper:junos:12.1x46:*:*:*:*:*:*:* |
juniper | junos | 12.1x46 | cpe:2.3:o:juniper:junos:12.1x46:d10:*:*:*:*:*:* |
juniper | junos | 12.1x46 | cpe:2.3:o:juniper:junos:12.1x46:d15:*:*:*:*:*:* |
juniper | junos | 12.1x46 | cpe:2.3:o:juniper:junos:12.1x46:d20:*:*:*:*:*:* |
juniper | junos | 12.1x46 | cpe:2.3:o:juniper:junos:12.1x46:d25:*:*:*:*:*:* |
juniper | junos | 12.1x46 | cpe:2.3:o:juniper:junos:12.1x46:d30:*:*:*:*:*:* |
juniper | junos | 12.1x47 | cpe:2.3:o:juniper:junos:12.1x47:*:*:*:*:*:*:* |
juniper | junos | 12.1x47 | cpe:2.3:o:juniper:junos:12.1x47:d10:*:*:*:*:*:* |
juniper | junos | 12.1x47 | cpe:2.3:o:juniper:junos:12.1x47:d20:*:*:*:*:*:* |
juniper | junos | 12.3x48 | cpe:2.3:o:juniper:junos:12.3x48:*:*:*:*:*:*:* |