Lucene search

PRIOn knowledge basePRION:CVE-2023-44187

HistoryOct 11, 2023 - 9:15 p.m.

Design/Logic Flaw

2023-10-1121:15:00

PRIOn knowledge base

www.prio-n.com

juniper networks

junos os evolved

vulnerability

sensitive information

unauthorized access

cli command-line

5.5 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

5.1%

JSON

An Exposure of Sensitive Information vulnerability in the ‘file copy’ command of Junos OS Evolved allows a local, authenticated attacker with shell access to view passwords supplied on the CLI command-line. These credentials can then be used to provide unauthorized access to the remote system.

This issue affects Juniper Networks Junos OS Evolved:

All versions prior to 20.4R3-S7-EVO;
21.1 versions 21.1R1-EVO and later;
21.2 versions prior to 21.2R3-S5-EVO;
21.3 versions prior to 21.3R3-S4-EVO;
21.4 versions prior to 21.4R3-S4-EVO;
22.1 versions prior to 22.1R3-S2-EVO;
22.2 versions prior to 22.2R2-EVO.

CPENameOperatorVersion
junos_os_evolvedeq20.4 r1
junos_os_evolvedeq21.1 r1
junos_os_evolvedeq21.1 r2
junos_os_evolvedeq21.1
junos_os_evolvedeq21.2 r1
junos_os_evolvedeq21.2
junos_os_evolvedeq21.2 r2
junos_os_evolvedeq21.1
junos_os_evolvedeq20.4
junos_os_evolvedeq20.4

Name	Operator	Version
junos_os_evolved	eq	20.4 r1
junos_os_evolved	eq	21.1 r1
junos_os_evolved	eq	21.1 r2
junos_os_evolved	eq	21.1
junos_os_evolved	eq	21.2 r1
junos_os_evolved	eq	21.2
junos_os_evolved	eq	21.2 r2
junos_os_evolved	eq	21.1
junos_os_evolved	eq	20.4
junos_os_evolved	eq	20.4

Rows per page:

1-10 of 661

References

supportportal.juniper.net/JSA73151