Juniper Junos CVE-2019-0057 Local Authorization Bypass Vulnerability

2019-10-09T00:00:00
ID SMNTC-110398
Type symantec
Reporter Symantec Security Response
Modified 2019-10-09T00:00:00

Description

Description

Juniper Junos is prone to a local authorization-bypass vulnerability. Attackers can exploit this issue to bypass certain security restrictions and perform unauthorized actions. Versions prior to Junos OS 18.2R1, and 18.2X75-D5 are vulnerable.

Technologies Affected

  • Juniper Junos 18.2
  • Juniper Junos 18.2X75

Recommendations

Permit local access for trusted individuals only. Where possible, use restricted environments and restricted shells.
Permit local interactive access to known and trusted individuals only. Use of restricted environments such as chroot and jail may also limit exposure to this and other latent vulnerabilities.

Updates are available. Please see the references or vendor advisory for more information.