First published: Wed Oct 09 2019(Updated: )
An improper authorization weakness in Juniper Networks Junos OS allows a local authenticated attacker to bypass regular security controls to access the Junos Device Manager (JDM) application and take control of the system. This issue affects: Juniper Networks Junos OS versions prior to 18.2R1, 18.2X75-D5.
Credit: sirt@juniper.net
Affected Software | Affected Version | How to fix |
---|---|---|
Juniper JUNOS | <=18.1 | |
Juniper JUNOS | =18.2 | |
Juniper JUNOS | =18.2x75 | |
Juniper Nfx150 | ||
Juniper Nfx250 |
The following software releases have been updated to resolve this specific issue: 18.2R1, 18.2X75-D5, and all subsequent releases.
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
CVE-2019-0057 is an improper authorization weakness in Juniper Networks Junos OS.
CVE-2019-0057 allows a local authenticated attacker to bypass regular security controls and access the Junos Device Manager (JDM) application to take control of the system.
Juniper Networks Junos OS versions prior to 18.2R1, 18.2X, 18.2x75 are affected by CVE-2019-0057.
CVE-2019-0057 has a severity rating of 7.8 (high).
To fix CVE-2019-0057, it is recommended to update to Juniper Networks Junos OS version 18.2R1, 18.2X, or 18.2x75.