2 matches found
CVE-2017-10620
Juniper Networks Junos OS on SRX series devices do not verify the HTTPS server certificate before downloading anti-virus updates. This may allow a man-in-the-middle attacker to inject bogus signatures to cause service disruptions or make the device not detect certain types of attacks. Affected...
CVE-2017-10620
The CVE describes a vulnerability in Juniper Networks Junos OS on SRX series devices where the HTTPS server certificate is not verified before downloading antivirus updates. This allows a man-in-the-middle attacker to inject bogus signatures, potentially causing service disruption or failing to d...