2 matches found
Juniper Junos SRX Cluster Synchronization Failover Errors (JSA10806)
According to its self-reported version number and configuration, the remote Juniper Junos device is affected by a flaw in the handling of cluster synchronization and failover operations whenever the root account has been locked out. An unauthenticated, remote attacker can exploit this, via a seri...
CVE-2017-10604
CVE-2017-10604 affects Juniper SRX Series devices running Junos OS in cluster mode. The issue arises when account lockout is enabled: an unauthenticated user making failed root login attempts can trigger root lockout, which in turn causes cluster sync or failover errors. Affected releases are SRX...