CVE-2017-2317: Infoleak
First published: Mon Apr 24 2017(Updated: )
A denial of service vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, unprivileged, network-based attacker to cause denials of services to underlying database tables leading to potential information disclosure, modification of system states, and partial to full denial of services relying upon data modified by an attacker.
Credit: sirt@juniper.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Juniper Northstar Controller | <=2.1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2017-2317?
CVE-2017-2317 has a severity rating that indicates it can lead to denial of service attacks.
How do I fix CVE-2017-2317?
To fix CVE-2017-2317, upgrade to Juniper NorthStar Controller version 2.1.0 Service Pack 1 or later.
What causes the CVE-2017-2317 vulnerability?
CVE-2017-2317 is caused by security weaknesses in the handling of requests by the Juniper NorthStar Controller.
Who is affected by CVE-2017-2317?
Organizations using Juniper NorthStar Controller versions prior to 2.1.0 Service Pack 1 are affected by CVE-2017-2317.
What are the potential impacts of CVE-2017-2317?
The potential impacts of CVE-2017-2317 include denial of service and possible information disclosure.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/weakness
- agent/last-modified-date
- agent/severity
- agent/author
- agent/description
- agent/first-publish-date
- agent/tags
- agent/event
- agent/source
- vendor/juniper
- canonical/juniper northstar controller
- version/juniper northstar controller/2.1.0