Juniper Security Director Policy Enforcer 访问控制错误漏洞

Juniper Security Director Policy Enforcer is a Juniper module that enables centralized issuance of security policies and automation of threat response. An access control error vulnerability exists in Juniper Security Director Policy Enforcer versions prior to 23.1R1 Hotpatch v3, which stems from ...

The vulnerability in the software web interface for Juniper Networks Security Director allows a hacker to disclose protected information.

The vulnerability of the Juniper Networks Security Director software’s web interface for security policy management is related to the lack of authentication. Exploiting this vulnerability can allow a malicious actor to disclose sensitive information...

CVE-2025-52950

Juniper Networks Security Director has a Missing Authorization vulnerability (CVE-2025-52950) where an unauthenticated network-based attacker can read or tamper with sensitive resources through the web interface. The issue arises from endpoints that do not validate authorization, allowing access ...

CVE-2025-52950 Juniper Security Director: Insufficient authorization for multiple endpoints in web interface

A Missing Authorization vulnerability in Juniper Networks Security Director allows an unauthenticated network-based attacker to read or tamper with multiple sensitive resources via the web interface. Numerous endpoints on the Juniper Security Director appliance do not validate authorization and...

CVE-2025-52950 Juniper Security Director: Insufficient authorization for multiple endpoints in web interface

A Missing Authorization vulnerability in Juniper Networks Security Director allows an unauthenticated network-based attacker to read or tamper with multiple sensitive resources via the web interface. Numerous endpoints on the Juniper Security Director appliance do not validate authorization and...

Juniper Security Director 安全漏洞

Juniper Security Director is a centralized management platform for security devices from Juniper USA. A security vulnerability exists in Juniper Security Director version 24.4.1 that stems from an authorization gap and could lead to the disclosure of sensitive information...