Juniper Junos Space before 13.1R1.6, as used on the JA1500 appliance and in other contexts, does not properly implement role-based access control, which allows remote authenticated users to modify the configuration by leveraging the read-only privilege, aka PR 863804.
CPE | Name | Operator | Version |
---|---|---|---|
junos_space | eq | 11.1 | |
junos_space | eq | 11.2 | |
junos_space | eq | 11.3 | |
junos_space | eq | 11.4 | |
junos_space | eq | 12.1 | |
junos_space | eq | 12.2 | |
junos_space | eq | 12.3 |