Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
nvd[email protected]NVD:CVE-2017-2349
HistoryJul 17, 2017 - 1:18 p.m.

CVE-2017-2349

2017-07-1713:18:24
CWE-77
[email protected]
web.nvd.nist.gov
5

CVSS2

9

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

9.7

Confidence

High

EPSS

0.001

Percentile

37.8%

JSON

A command injection vulnerability in the IDP feature of Juniper Networks Junos OS on SRX series devices potentially allows a user with login access to the device to execute shell commands and elevate privileges. Affected releases are Juniper Networks Junos OS 12.1X44 prior to 12.1X44-D60; 12.1X46 prior to 12.1X46-D50; 12.1X47 prior to 12.1X47-D30, 12.1X47-D35; 12.3X48 prior to 12.3X48-D20, 12.3X48-D30; 15.1X49 prior to 15.1X49-D20, 15.1X49-D30.

Affected configurations

Nvd
Node
juniperjunosMatch12.1x44
OR
juniperjunosMatch12.1x44d10
OR
juniperjunosMatch12.1x44d15
OR
juniperjunosMatch12.1x44d20
OR
juniperjunosMatch12.1x44d25
OR
juniperjunosMatch12.1x44d30
OR
juniperjunosMatch12.1x44d35
OR
juniperjunosMatch12.1x44d40
OR
juniperjunosMatch12.1x44d45
OR
juniperjunosMatch12.1x44d50
OR
juniperjunosMatch12.1x44d55
OR
juniperjunosMatch12.1x46
OR
juniperjunosMatch12.1x46d10
OR
juniperjunosMatch12.1x46d15
OR
juniperjunosMatch12.1x46d20
OR
juniperjunosMatch12.1x46d25
OR
juniperjunosMatch12.1x46d30
OR
juniperjunosMatch12.1x46d35
OR
juniperjunosMatch12.1x46d40
OR
juniperjunosMatch12.1x46d45
OR
juniperjunosMatch12.1x46d50
OR
juniperjunosMatch12.1x46d55
OR
juniperjunosMatch12.1x47
OR
juniperjunosMatch12.1x47d10
OR
juniperjunosMatch12.1x47d15
OR
juniperjunosMatch12.1x47d20
OR
juniperjunosMatch12.1x47d25
OR
juniperjunosMatch12.1x47d35
OR
juniperjunosMatch12.3x48
OR
juniperjunosMatch12.3x48d10
OR
juniperjunosMatch12.3x48d15
OR
juniperjunosMatch12.3x48d30
OR
juniperjunosMatch15.1x49d10
OR
juniperjunosMatch15.1x49d15
OR
juniperjunosMatch15.1x49d30
VendorProductVersionCPE
juniperjunos12.1x44cpe:2.3:o:juniper:junos:12.1x44:*:*:*:*:*:*:*
juniperjunos12.1x44cpe:2.3:o:juniper:junos:12.1x44:d10:*:*:*:*:*:*
juniperjunos12.1x44cpe:2.3:o:juniper:junos:12.1x44:d15:*:*:*:*:*:*
juniperjunos12.1x44cpe:2.3:o:juniper:junos:12.1x44:d20:*:*:*:*:*:*
juniperjunos12.1x44cpe:2.3:o:juniper:junos:12.1x44:d25:*:*:*:*:*:*
juniperjunos12.1x44cpe:2.3:o:juniper:junos:12.1x44:d30:*:*:*:*:*:*
juniperjunos12.1x44cpe:2.3:o:juniper:junos:12.1x44:d35:*:*:*:*:*:*
juniperjunos12.1x44cpe:2.3:o:juniper:junos:12.1x44:d40:*:*:*:*:*:*
juniperjunos12.1x44cpe:2.3:o:juniper:junos:12.1x44:d45:*:*:*:*:*:*
juniperjunos12.1x44cpe:2.3:o:juniper:junos:12.1x44:d50:*:*:*:*:*:*
Rows per page:
1-10 of 351

Related

nessus 1
cvelist 1
prion 1
cve 1
nessus
nessus
Juniper Junos SRX IDP Remote Command Injection (JSA10801)
2017-07-31 00:00:00
cvelist
cvelist
CVE-2017-2349 SRX Series: Command injection vulnerability in SRX IDP feature.
2017-07-14 14:00:00
prion
prion
Command injection
2017-07-17 13:18:00
cve
cve
CVE-2017-2349
2017-07-17 13:18:24

CVSS2

9

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

COMPLETE

Integrity Impact

COMPLETE

Availability Impact

COMPLETE

AV:N/AC:L/Au:S/C:C/I:C/A:C

CVSS3

8.8

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

AI Score

9.7

Confidence

High

EPSS

0.001

Percentile

37.8%

JSON
Related for NVD:CVE-2017-2349
nessus1cvelist1prion1cve1