CVE-2017-2309: Infoleak
First published: Tue May 30 2017(Updated: )
On Juniper Networks Junos Space versions prior to 16.1R1 when certificate based authentication is enabled for the Junos Space cluster, some restricted web services are accessible over the network. This represents an information leak risk.
Credit: sirt@juniper.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Juniper Networks Junos Space | <=16.1 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2017-2309?
CVE-2017-2309 is considered a medium severity vulnerability due to the risk of information leakage.
How do I fix CVE-2017-2309?
To mitigate CVE-2017-2309, upgrade to Junos Space version 16.1R1 or later.
What does CVE-2017-2309 affect?
CVE-2017-2309 affects Juniper Networks Junos Space versions prior to 16.1R1.
What is the risk associated with CVE-2017-2309?
The risk associated with CVE-2017-2309 is that restricted web services may be accessible over the network, leading to potential information leaks.
When was CVE-2017-2309 disclosed?
CVE-2017-2309 was disclosed in June 2017.
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/severity
- agent/last-modified-date
- agent/author
- agent/weakness
- agent/description
- agent/first-publish-date
- agent/event
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/juniper
- canonical/juniper networks junos space
- version/juniper networks junos space/16.1