CVE-2017-2331
First published: Mon Apr 24 2017(Updated: )
A firewall bypass vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a network-based malicious attacker to bypass firewall policies, leading to authentication bypass methods, information disclosure, modification of system files, and denials of service.
Credit: sirt@juniper.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Juniper Northstar Controller | <=2.1.0 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Frequently Asked Questions
What is the severity of CVE-2017-2331?
The severity of CVE-2017-2331 is considered high due to its potential to allow unauthorized access and modification of system files.
How do I fix CVE-2017-2331?
To fix CVE-2017-2331, upgrade your Juniper Networks NorthStar Controller Application to version 2.1.0 Service Pack 1 or later.
Which versions of Juniper Networks NorthStar Controller are affected by CVE-2017-2331?
CVE-2017-2331 affects all versions prior to 2.1.0 Service Pack 1 of the Juniper Networks NorthStar Controller.
What types of attacks can be executed due to CVE-2017-2331?
CVE-2017-2331 may enable a network-based attacker to execute authentication bypass, information disclosure, and modification of system files.
Is there a workaround for CVE-2017-2331 if I cannot upgrade immediately?
Currently, there are no known workarounds for CVE-2017-2331, and upgrading is the recommended action to mitigate the vulnerability.
- collector/nvd-index
- agent/references
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/severity
- agent/author
- agent/description
- agent/first-publish-date
- agent/tags
- agent/event
- agent/source
- vendor/juniper
- canonical/juniper northstar controller
- version/juniper northstar controller/2.1.0