CVE-2021-0231

🗓️ 22 Apr 2021 19:36:59Reported by juniperType

Path traversal vulnerability in Juniper SRX and vSRX Series, allows J-web user to read sensitive system files. Affects Junos OS 19.3, 19.4, 20.1, 20.2 versions

Reporter	Title	Published	Views	Family All 8
CNNVD	Juniper Networks Junos OS 路径遍历漏洞	14 Apr 202100:00	–	cnnvd
CNVD	Juniper Networks Junos OS Path Traversal Vulnerability (CNVD-2021-37735)	17 May 202100:00	–	cnvd
Cvelist	CVE-2021-0231 Junos OS: SRX, vSRX Series: J-Web Path traversal vulnerability in SRX and vSRX Series leads to information disclosure.	22 Apr 202119:36	–	cvelist
EUVD	EUVD-2021-2850	3 Oct 202520:07	–	euvd
Tenable Nessus	Juniper Junos OS Information Disclosure (JSA11126)	13 May 202100:00	–	nessus
NCSC	Vulnerabilities fixed in Juniper Junos OS	19 Apr 202100:00	–	ncsc
NVD	CVE-2021-0231	22 Apr 202120:15	–	nvd
Prion	Path traversal	22 Apr 202120:15	–	prion

NVD

Vulners

Node

juniper junosMatch19.3-

juniper junosMatch19.3r1

juniper junosMatch19.3r1-s1

juniper junosMatch19.3r2

juniper junosMatch19.3r2-s1

juniper junosMatch19.3r2-s2

juniper junosMatch19.3r2-s3

juniper junosMatch19.3r2-s4

juniper junosMatch19.3r2-s5

juniper junosMatch19.3r3

juniper junosMatch19.4r1

juniper junosMatch19.4r1-s1

juniper junosMatch19.4r1-s2

juniper junosMatch19.4r2

juniper junosMatch19.4r2-s1

juniper junosMatch19.4r2-s2

juniper junosMatch19.4r2-s3

juniper junosMatch20.1r1

juniper junosMatch20.1r1-s1

juniper junosMatch20.1r1-s2

juniper junosMatch20.1r1-s3

juniper junosMatch20.2r1

juniper junosMatch20.2r1-s1

juniper junosMatch20.2r1-s2

AND

juniper vsrxMatch-

juniper srx1500Match-

juniper srx300Match-

juniper srx320Match-

juniper srx340Match-

juniper srx345Match-

juniper srx380Match-

juniper srx4100Match-

juniper srx4200Match-

juniper srx4600Match-

juniper srx5400Match-

juniper srx550Match-

juniper srx5600Match-

juniper srx5800Match-

[
  {
    "platforms": [
      "SRX, vSRX Series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "19.3R2-S6, 19.3R3-S1",
        "status": "affected",
        "version": "19.3",
        "versionType": "custom"
      },
      {
        "lessThan": "19.4R2-S4, 19.4R3",
        "status": "affected",
        "version": "19.4",
        "versionType": "custom"
      },
      {
        "lessThan": "20.1R1-S4, 20.1R2",
        "status": "affected",
        "version": "20.1",
        "versionType": "custom"
      },
      {
        "lessThan": "20.2R1-S3, 20.2R2",
        "status": "affected",
        "version": "20.2",
        "versionType": "custom"
      }
    ]
  },
  {
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "19.3R1",
        "status": "unaffected",
        "version": "unspecified",
        "versionType": "custom"
      }
    ]
  }
]

Source	Link
kb	www.kb.juniper.net/JSA11126

21 Nov 2024 05:42Current

6.3Medium risk

Vulners AI Score6.3

CVSS 26.8

CVSS 3.16.5

EPSS0.00267

CWE-22