CVE-2020-1606: Junos OS: Path traversal vulnerability in J-Web
First published: Wed Jan 08 2020(Updated: )
A path traversal vulnerability in the Juniper Networks Junos OS device may allow an authenticated J-web user to read files with 'world' readable permission and delete files with 'world' writeable permission. This issue does not affect system files that can be accessed only by root user. This issue affects Juniper Networks Junos OS: 12.3 versions prior to 12.3R12-S13; 12.3X48 versions prior to 12.3X48-D85 on SRX Series; 14.1X53 versions prior to 14.1X53-D51; 15.1F6 versions prior to 15.1F6-S13; 15.1 versions prior to 15.1R7-S5; 15.1X49 versions prior to 15.1X49-D180 on SRX Series; 15.1X53 versions prior to 15.1X53-D238 on QFX5200/QFX5110 Series; 16.1 versions prior to 16.1R4-S13, 16.1R7-S5; 16.2 versions prior to 16.2R2-S10; 17.1 versions prior to 17.1R3-S1; 17.2 versions prior to 17.2R1-S9, 17.2R3-S2; 17.3 versions prior to 17.3R2-S5, 17.3R3-S5; 17.4 versions prior to 17.4R2-S9, 17.4R3; 18.1 versions prior to 18.1R3-S8; 18.2 versions prior to 18.2R3; 18.3 versions prior to 18.3R2-S3, 18.3R3; 18.4 versions prior to 18.4R2; 19.1 versions prior to 19.1R1-S4, 19.1R2.
Credit: sirt@juniper.net
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Juniper JUNOS | =12.3 | |
| Juniper JUNOS | =12.3-r1 | |
| Juniper JUNOS | =12.3-r10-s1 | |
| Juniper JUNOS | =12.3-r10-s2 | |
| Juniper JUNOS | =12.3-r11 | |
| Juniper JUNOS | =12.3-r12 | |
| Juniper JUNOS | =12.3-r12-s1 | |
| Juniper JUNOS | =12.3-r12-s10 | |
| Juniper JUNOS | =12.3-r12-s11 | |
| Juniper JUNOS | =12.3-r12-s12 | |
| Juniper JUNOS | =12.3-r12-s3 | |
| Juniper JUNOS | =12.3-r12-s4 | |
| Juniper JUNOS | =12.3-r12-s6 | |
| Juniper JUNOS | =12.3-r12-s8 | |
| Juniper JUNOS | =12.3-r13 | |
| Juniper JUNOS | =12.3-r2 | |
| Juniper JUNOS | =12.3-r3 | |
| Juniper JUNOS | =12.3-r4 | |
| Juniper JUNOS | =12.3-r5 | |
| Juniper JUNOS | =12.3-r6 | |
| Juniper JUNOS | =12.3-r7 | |
| Juniper JUNOS | =12.3-r8 | |
| Juniper JUNOS | =12.3-r9 | |
| Juniper JUNOS | =14.1x53 | |
| Juniper JUNOS | =14.1x53-d10 | |
| Juniper JUNOS | =14.1x53-d15 | |
| Juniper JUNOS | =14.1x53-d16 | |
| Juniper JUNOS | =14.1x53-d25 | |
| Juniper JUNOS | =14.1x53-d26 | |
| Juniper JUNOS | =14.1x53-d27 | |
| Juniper JUNOS | =14.1x53-d30 | |
| Juniper JUNOS | =14.1x53-d35 | |
| Juniper JUNOS | =14.1x53-d40 | |
| Juniper JUNOS | =14.1x53-d45 | |
| Juniper JUNOS | =14.1x53-d48 | |
| Juniper JUNOS | =14.1x53-d49 | |
| Juniper JUNOS | =15.1-f6 | |
| Juniper JUNOS | =15.1-f6-s12 | |
| Juniper JUNOS | =15.1-f6-s3 | |
| Juniper JUNOS | =15.1-f6-s8 | |
| Juniper JUNOS | =15.1-r7-s1 | |
| Juniper JUNOS | =15.1-r7-s2 | |
| Juniper JUNOS | =15.1-r7-s3 | |
| Juniper JUNOS | =15.1-r7-s4 | |
| Juniper JUNOS | =16.1 | |
| Juniper JUNOS | =16.1-r1 | |
| Juniper JUNOS | =16.1-r2 | |
| Juniper JUNOS | =16.1-r3 | |
| Juniper JUNOS | =16.1-r3-s10 | |
| Juniper JUNOS | =16.1-r4 | |
| Juniper JUNOS | =16.1-r4-s3 | |
| Juniper JUNOS | =16.1-r4-s6 | |
| Juniper JUNOS | =16.1-r4-s9 | |
| Juniper JUNOS | =16.1-r5-s4 | |
| Juniper JUNOS | =16.1-r6-s1 | |
| Juniper JUNOS | =16.1-r7 | |
| Juniper JUNOS | =16.1-r7-s2 | |
| Juniper JUNOS | =16.1-r7-s3 | |
| Juniper JUNOS | =16.1-r7-s4 | |
| Juniper JUNOS | =16.2 | |
| Juniper JUNOS | =16.2-r1 | |
| Juniper JUNOS | =16.2-r2 | |
| Juniper JUNOS | =16.2-r2-s1 | |
| Juniper JUNOS | =16.2-r2-s2 | |
| Juniper JUNOS | =16.2-r2-s5 | |
| Juniper JUNOS | =16.2-r2-s6 | |
| Juniper JUNOS | =16.2-r2-s7 | |
| Juniper JUNOS | =16.2-r2-s8 | |
| Juniper JUNOS | =16.2-r2-s9 | |
| Juniper JUNOS | =17.1 | |
| Juniper JUNOS | =17.1-r1 | |
| Juniper JUNOS | =17.1-r2-s1 | |
| Juniper JUNOS | =17.1-r2-s10 | |
| Juniper JUNOS | =17.1-r2-s2 | |
| Juniper JUNOS | =17.1-r2-s3 | |
| Juniper JUNOS | =17.1-r2-s4 | |
| Juniper JUNOS | =17.1-r2-s5 | |
| Juniper JUNOS | =17.1-r2-s6 | |
| Juniper JUNOS | =17.1-r2-s7 | |
| Juniper JUNOS | =17.1-r2-s9 | |
| Juniper JUNOS | =17.1-r3 | |
| Juniper JUNOS | =17.2 | |
| Juniper JUNOS | =17.2-r1-s2 | |
| Juniper JUNOS | =17.2-r1-s4 | |
| Juniper JUNOS | =17.2-r1-s7 | |
| Juniper JUNOS | =17.2-r1-s8 | |
| Juniper JUNOS | =17.2-r2-s6 | |
| Juniper JUNOS | =17.2-r2-s7 | |
| Juniper JUNOS | =17.2-r3 | |
| Juniper JUNOS | =17.2-r3-s1 | |
| Juniper JUNOS | =17.4 | |
| Juniper JUNOS | =17.4-r1 | |
| Juniper JUNOS | =17.4-r1-s1 | |
| Juniper JUNOS | =17.4-r1-s2 | |
| Juniper JUNOS | =17.4-r1-s4 | |
| Juniper JUNOS | =17.4-r1-s6 | |
| Juniper JUNOS | =17.4-r1-s7 | |
| Juniper JUNOS | =17.4-r2 | |
| Juniper JUNOS | =17.4-r2-s1 | |
| Juniper JUNOS | =17.4-r2-s2 | |
| Juniper JUNOS | =17.4-r2-s3 | |
| Juniper JUNOS | =17.4-r2-s4 | |
| Juniper JUNOS | =17.4-r2-s5 | |
| Juniper JUNOS | =17.4-r2-s6 | |
| Juniper JUNOS | =17.4-r2-s7 | |
| Juniper JUNOS | =17.4-r2-s8 | |
| Juniper JUNOS | =18.1 | |
| Juniper JUNOS | =18.1-r2 | |
| Juniper JUNOS | =18.1-r2-s1 | |
| Juniper JUNOS | =18.1-r2-s2 | |
| Juniper JUNOS | =18.1-r2-s4 | |
| Juniper JUNOS | =18.1-r3 | |
| Juniper JUNOS | =18.1-r3-s1 | |
| Juniper JUNOS | =18.1-r3-s2 | |
| Juniper JUNOS | =18.1-r3-s3 | |
| Juniper JUNOS | =18.1-r3-s4 | |
| Juniper JUNOS | =18.1-r3-s5 | |
| Juniper JUNOS | =18.1-r3-s6 | |
| Juniper JUNOS | =18.1-r3-s7 | |
| Juniper JUNOS | =18.2 | |
| Juniper JUNOS | =18.2-r1-s5 | |
| Juniper JUNOS | =18.2-r2-s1 | |
| Juniper JUNOS | =18.2-r2-s2 | |
| Juniper JUNOS | =18.2-r2-s3 | |
| Juniper JUNOS | =18.2-r2-s4 | |
| Juniper JUNOS | =18.3 | |
| Juniper JUNOS | =18.3-r1 | |
| Juniper JUNOS | =18.3-r1-s1 | |
| Juniper JUNOS | =18.3-r1-s2 | |
| Juniper JUNOS | =18.3-r1-s3 | |
| Juniper JUNOS | =18.3-r2 | |
| Juniper JUNOS | =18.3-r2-s1 | |
| Juniper JUNOS | =18.3-r2-s2 | |
| Juniper JUNOS | =18.4 | |
| Juniper JUNOS | =18.4-r1 | |
| Juniper JUNOS | =18.4-r1-s1 | |
| Juniper JUNOS | =18.4-r1-s2 | |
| Juniper JUNOS | =19.1-r1 | |
| Juniper JUNOS | =19.1-r1-s1 | |
| Juniper JUNOS | =19.1-r1-s3 | |
| Juniper JUNOS | =12.3x48-d10 | |
| Juniper JUNOS | =12.3x48-d15 | |
| Juniper JUNOS | =12.3x48-d25 | |
| Juniper JUNOS | =12.3x48-d70 | |
| Juniper JUNOS | =12.3x48-d75 | |
| Juniper JUNOS | =12.3x48-d80 | |
| Juniper JUNOS | =15.1x49-d10 | |
| Juniper JUNOS | =15.1x49-d150 | |
| Juniper JUNOS | =15.1x49-d160 | |
| Juniper JUNOS | =15.1x49-d170 | |
| Juniper JUNOS | =15.1x49-d20 | |
| Juniper JUNOS | =15.1x49-d30 | |
| Juniper JUNOS | =15.1x49-d35 | |
| Juniper JUNOS | =15.1x49-d40 | |
| Juniper JUNOS | =15.1x49-d45 | |
| Juniper JUNOS | =15.1x49-d50 | |
| Juniper JUNOS | =15.1x49-d55 | |
| Juniper JUNOS | =15.1x49-d60 | |
| Juniper JUNOS | =15.1x49-d65 | |
| Juniper JUNOS | =15.1x49-d70 | |
| Juniper JUNOS | =15.1x49-d75 | |
| Juniper JUNOS | =15.1x49-d80 | |
| Juniper SRX100 | ||
| Juniper SRX110 | ||
| Juniper SRX1400 | ||
| Juniper SRX1500 | ||
| Juniper SRX210 | ||
| Juniper SRX220 | ||
| Juniper SRX240 | ||
| Juniper SRX300 | ||
| Juniper SRX320 | ||
| Juniper SRX340 | ||
| Juniper SRX3400 | ||
| Juniper SRX345 | ||
| Juniper SRX3600 | ||
| Juniper SRX4100 | ||
| Juniper SRX4200 | ||
| Juniper SRX4600 | ||
| Juniper SRX5400 | ||
| Juniper SRX550 | ||
| juniper srx5600 | ||
| Juniper SRX5800 | ||
| Juniper SRX650 | ||
| Juniper JUNOS | =15.1x53-d20 | |
| Juniper JUNOS | =15.1x53-d21 | |
| Juniper JUNOS | =15.1x53-d210 | |
| Juniper JUNOS | =15.1x53-d230 | |
| Juniper JUNOS | =15.1x53-d231 | |
| Juniper JUNOS | =15.1x53-d232 | |
| Juniper JUNOS | =15.1x53-d233 | |
| Juniper JUNOS | =15.1x53-d234 | |
| Juniper JUNOS | =15.1x53-d235 | |
| Juniper JUNOS | =15.1x53-d236 | |
| Juniper JUNOS | =15.1x53-d237 | |
| Juniper JUNOS | =15.1x53-d25 | |
| Juniper JUNOS | =15.1x53-d30 | |
| Juniper JUNOS | =15.1x53-d31 | |
| Juniper JUNOS | =15.1x53-d32 | |
| Juniper JUNOS | =15.1x53-d33 | |
| Juniper JUNOS | =15.1x53-d34 | |
| Juniper JUNOS | =15.1x53-d40 | |
| Juniper JUNOS | =15.1x53-d45 | |
| Juniper JUNOS | =15.1x53-d56 | |
| Juniper JUNOS | =15.1x53-d60 | |
| Juniper JUNOS | =15.1x53-d61 | |
| Juniper JUNOS | =15.1x53-d62 | |
| Juniper JUNOS | =15.1x53-d63 | |
| Juniper JUNOS | =15.1x53-d65 | |
| Juniper Qfx5110 | ||
| Juniper Qfx5200 |
Remedy
The following software releases have been updated to resolve this specific issue: 12.3R12-S13, 12.3X48-D85, 14.1X53-D51, 15.1F6-S13, 15.1R7-S5, 15.1X49-D180, 15.1X53-D238, 16.1R4-S13, 16.1R7-S5, 16.2R2-S10, 17.1R3-S1, 17.2R1-S9, 17.2R3-S2, 17.3R2-S5, 17.3R3-S5, 17.4R2-S9, 17.4R3, 18.1R3-S8, 18.2R3, 18.3R2-S3, 18.3R3, 18.4R2, 19.1R1-S4, 19.1R2, 19.2R1, and all subsequent releases.
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2020-1606?
CVE-2020-1606 is rated as a medium severity vulnerability due to its potential to allow unauthorized file access and deletion.
How do I fix CVE-2020-1606?
To fix CVE-2020-1606, update your Juniper Junos OS to the latest version available from Juniper Networks that addresses the vulnerability.
What products are affected by CVE-2020-1606?
CVE-2020-1606 affects multiple versions of Juniper Networks Junos OS, including versions 12.3 to 18.4.
Can CVE-2020-1606 be exploited remotely?
CVE-2020-1606 requires authenticated access, so it cannot be exploited remotely without valid credentials.
What kind of attack can CVE-2020-1606 facilitate?
CVE-2020-1606 can facilitate unauthorized file reading and deletion by authenticated users with appropriate permissions.
- agent/type
- agent/softwarecombine
- collector/mitre-cve
- source/MITRE
- agent/references
- agent/remedy
- agent/weakness
- agent/author
- agent/severity
- agent/last-modified-date
- agent/title
- agent/description
- agent/event
- agent/first-publish-date
- agent/source
- agent/tags
- collector/nvd-index
- agent/software-canonical-lookup-request
- vendor/juniper
- canonical/juniper junos
- version/juniper junos/12.3
- version/juniper junos/12.3-r1
- version/juniper junos/12.3-r10-s1
- version/juniper junos/12.3-r10-s2
- version/juniper junos/12.3-r11
- version/juniper junos/12.3-r12
- version/juniper junos/12.3-r12-s1
- version/juniper junos/12.3-r12-s10
- version/juniper junos/12.3-r12-s11
- version/juniper junos/12.3-r12-s12
- version/juniper junos/12.3-r12-s3
- version/juniper junos/12.3-r12-s4
- version/juniper junos/12.3-r12-s6
- version/juniper junos/12.3-r12-s8
- version/juniper junos/12.3-r13
- version/juniper junos/12.3-r2
- version/juniper junos/12.3-r3
- version/juniper junos/12.3-r4
- version/juniper junos/12.3-r5
- version/juniper junos/12.3-r6
- version/juniper junos/12.3-r7
- version/juniper junos/12.3-r8
- version/juniper junos/12.3-r9
- version/juniper junos/14.1x53
- version/juniper junos/14.1x53-d10
- version/juniper junos/14.1x53-d15
- version/juniper junos/14.1x53-d16
- version/juniper junos/14.1x53-d25
- version/juniper junos/14.1x53-d26
- version/juniper junos/14.1x53-d27
- version/juniper junos/14.1x53-d30
- version/juniper junos/14.1x53-d35
- version/juniper junos/14.1x53-d40
- version/juniper junos/14.1x53-d45
- version/juniper junos/14.1x53-d48
- version/juniper junos/14.1x53-d49
- version/juniper junos/15.1-f6
- version/juniper junos/15.1-f6-s12
- version/juniper junos/15.1-f6-s3
- version/juniper junos/15.1-f6-s8
- version/juniper junos/15.1-r7-s1
- version/juniper junos/15.1-r7-s2
- version/juniper junos/15.1-r7-s3
- version/juniper junos/15.1-r7-s4
- version/juniper junos/16.1
- version/juniper junos/16.1-r1
- version/juniper junos/16.1-r2
- version/juniper junos/16.1-r3
- version/juniper junos/16.1-r3-s10
- version/juniper junos/16.1-r4
- version/juniper junos/16.1-r4-s3
- version/juniper junos/16.1-r4-s6
- version/juniper junos/16.1-r4-s9
- version/juniper junos/16.1-r5-s4
- version/juniper junos/16.1-r6-s1
- version/juniper junos/16.1-r7
- version/juniper junos/16.1-r7-s2
- version/juniper junos/16.1-r7-s3
- version/juniper junos/16.1-r7-s4
- version/juniper junos/16.2
- version/juniper junos/16.2-r1
- version/juniper junos/16.2-r2
- version/juniper junos/16.2-r2-s1
- version/juniper junos/16.2-r2-s2
- version/juniper junos/16.2-r2-s5
- version/juniper junos/16.2-r2-s6
- version/juniper junos/16.2-r2-s7
- version/juniper junos/16.2-r2-s8
- version/juniper junos/16.2-r2-s9
- version/juniper junos/17.1
- version/juniper junos/17.1-r1
- version/juniper junos/17.1-r2-s1
- version/juniper junos/17.1-r2-s10
- version/juniper junos/17.1-r2-s2
- version/juniper junos/17.1-r2-s3
- version/juniper junos/17.1-r2-s4
- version/juniper junos/17.1-r2-s5
- version/juniper junos/17.1-r2-s6
- version/juniper junos/17.1-r2-s7
- version/juniper junos/17.1-r2-s9
- version/juniper junos/17.1-r3
- version/juniper junos/17.2
- version/juniper junos/17.2-r1-s2
- version/juniper junos/17.2-r1-s4
- version/juniper junos/17.2-r1-s7
- version/juniper junos/17.2-r1-s8
- version/juniper junos/17.2-r2-s6
- version/juniper junos/17.2-r2-s7
- version/juniper junos/17.2-r3
- version/juniper junos/17.2-r3-s1
- version/juniper junos/17.4
- version/juniper junos/17.4-r1
- version/juniper junos/17.4-r1-s1
- version/juniper junos/17.4-r1-s2
- version/juniper junos/17.4-r1-s4
- version/juniper junos/17.4-r1-s6
- version/juniper junos/17.4-r1-s7
- version/juniper junos/17.4-r2
- version/juniper junos/17.4-r2-s1
- version/juniper junos/17.4-r2-s2
- version/juniper junos/17.4-r2-s3
- version/juniper junos/17.4-r2-s4
- version/juniper junos/17.4-r2-s5
- version/juniper junos/17.4-r2-s6
- version/juniper junos/17.4-r2-s7
- version/juniper junos/17.4-r2-s8
- version/juniper junos/18.1
- version/juniper junos/18.1-r2
- version/juniper junos/18.1-r2-s1
- version/juniper junos/18.1-r2-s2
- version/juniper junos/18.1-r2-s4
- version/juniper junos/18.1-r3
- version/juniper junos/18.1-r3-s1
- version/juniper junos/18.1-r3-s2
- version/juniper junos/18.1-r3-s3
- version/juniper junos/18.1-r3-s4
- version/juniper junos/18.1-r3-s5
- version/juniper junos/18.1-r3-s6
- version/juniper junos/18.1-r3-s7
- version/juniper junos/18.2
- version/juniper junos/18.2-r1-s5
- version/juniper junos/18.2-r2-s1
- version/juniper junos/18.2-r2-s2
- version/juniper junos/18.2-r2-s3
- version/juniper junos/18.2-r2-s4
- version/juniper junos/18.3
- version/juniper junos/18.3-r1
- version/juniper junos/18.3-r1-s1
- version/juniper junos/18.3-r1-s2
- version/juniper junos/18.3-r1-s3
- version/juniper junos/18.3-r2
- version/juniper junos/18.3-r2-s1
- version/juniper junos/18.3-r2-s2
- version/juniper junos/18.4
- version/juniper junos/18.4-r1
- version/juniper junos/18.4-r1-s1
- version/juniper junos/18.4-r1-s2
- version/juniper junos/19.1-r1
- version/juniper junos/19.1-r1-s1
- version/juniper junos/19.1-r1-s3
- version/juniper junos/12.3x48-d10
- version/juniper junos/12.3x48-d15
- version/juniper junos/12.3x48-d25
- version/juniper junos/12.3x48-d70
- version/juniper junos/12.3x48-d75
- version/juniper junos/12.3x48-d80
- version/juniper junos/15.1x49-d10
- version/juniper junos/15.1x49-d150
- version/juniper junos/15.1x49-d160
- version/juniper junos/15.1x49-d170
- version/juniper junos/15.1x49-d20
- version/juniper junos/15.1x49-d30
- version/juniper junos/15.1x49-d35
- version/juniper junos/15.1x49-d40
- version/juniper junos/15.1x49-d45
- version/juniper junos/15.1x49-d50
- version/juniper junos/15.1x49-d55
- version/juniper junos/15.1x49-d60
- version/juniper junos/15.1x49-d65
- version/juniper junos/15.1x49-d70
- version/juniper junos/15.1x49-d75
- version/juniper junos/15.1x49-d80
- canonical/juniper srx100
- canonical/juniper srx110
- canonical/juniper srx1400
- canonical/juniper srx1500
- canonical/juniper srx210
- canonical/juniper srx220
- canonical/juniper srx240
- canonical/juniper srx300
- canonical/juniper srx320
- canonical/juniper srx340
- canonical/juniper srx3400
- canonical/juniper srx345
- canonical/juniper srx3600
- canonical/juniper srx4100
- canonical/juniper srx4200
- canonical/juniper srx4600
- canonical/juniper srx5400
- canonical/juniper srx550
- canonical/juniper srx5600
- canonical/juniper srx5800
- canonical/juniper srx650
- version/juniper junos/15.1x53-d20
- version/juniper junos/15.1x53-d21
- version/juniper junos/15.1x53-d210
- version/juniper junos/15.1x53-d230
- version/juniper junos/15.1x53-d231
- version/juniper junos/15.1x53-d232
- version/juniper junos/15.1x53-d233
- version/juniper junos/15.1x53-d234
- version/juniper junos/15.1x53-d235
- version/juniper junos/15.1x53-d236
- version/juniper junos/15.1x53-d237
- version/juniper junos/15.1x53-d25
- version/juniper junos/15.1x53-d30
- version/juniper junos/15.1x53-d31
- version/juniper junos/15.1x53-d32
- version/juniper junos/15.1x53-d33
- version/juniper junos/15.1x53-d34
- version/juniper junos/15.1x53-d40
- version/juniper junos/15.1x53-d45
- version/juniper junos/15.1x53-d56
- version/juniper junos/15.1x53-d60
- version/juniper junos/15.1x53-d61
- version/juniper junos/15.1x53-d62
- version/juniper junos/15.1x53-d63
- version/juniper junos/15.1x53-d65
- canonical/juniper qfx5110
- canonical/juniper qfx5200