3 matches found
Juniper Junos Commit Script Handling Local Console Port Access Weakness Vulnerability (JSA10835)
According to its self-reported version number, the remote Junos device is affected by a authentication bypass vulnerability. C Tenable Network Security, Inc. include'compat.inc'; if description scriptid106392; scriptversion"1.6"; scriptsetattributeattribute:"pluginmodificationdate",...
CVE-2018-0008 Junos OS: commit script may allow unauthenticated root login upon reboot
An unauthenticated root login may allow upon reboot when a commit script is used. A commit script allows a device administrator to execute certain instructions during commit, which is configured under the system scripts commit stanza. Certain commit scripts that work without a problem during norm...
CVE-2018-0008
The CVE-2018-0008 entry describes an authentication bypass in Junos OS where an unauthenticated root login can occur after a reboot when a commit script is used. During normal commit, certain scripts may trigger a mode change on reboot that leaves the system in a safe-mode authentication state, a...