CVE-2015-7751

Juniper Junos OS before 12.1X44-D50, 12.1X46 before 12.1X46-D35, 12.1X47 before 12.1X47-D25, 12.3 before 12.3R9, 12.3X48 before 12.3X48-D15, 13.2 before 13.2R7, 13.2X51 before 13.2X51-D35, 13.3 before 13.3R6, 14.1 before 14.1R5, 14.1X50 before 14.1X50-D105, 14.1X51 before 14.1X51-D70, 14.1X53 before 14.1X53-D25, 14.1X55 before 14.1X55-D20, 14.2 before 14.2R1, 15.1 before 15.1F2 or 15.1R1, and 15.1X49 before 15.1X49-D10 does not require a password for the root user when pam.conf is "corrupted," which allows local users to gain root privileges by modifying the file.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.9 UNKNOWN
LOCAL
MEDIUM
AV:L/AC:M/Au:N/C:C/I:C/A:C
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 12%
VendorProductVersion
juniperjunos
𝑥
≤ 12.1x44
juniperjunos
12.1x46:x46
juniperjunos
12.1x46:x46
juniperjunos
12.1x46:x46
juniperjunos
12.1x46:x46
juniperjunos
12.1x46:x46
juniperjunos
12.1x46:x46
juniperjunos
12.1x47:x47
juniperjunos
12.1x47:x47
juniperjunos
12.1x47:x47
juniperjunos
12.1x47:x47
juniperjunos
12.3
juniperjunos
12.3:r1
juniperjunos
12.3:r2
juniperjunos
12.3:r3
juniperjunos
12.3:r4
juniperjunos
12.3:r5
juniperjunos
12.3:r6
juniperjunos
12.3:r7
juniperjunos
12.3:r8
juniperjunos
12.3x48:x48
juniperjunos
12.3x48:x48
juniperjunos
12.3x48:x48
juniperjunos
13.2
juniperjunos
13.2:r1
juniperjunos
13.2:r2
juniperjunos
13.2:r3
juniperjunos
13.2:r4
juniperjunos
13.2:r5
juniperjunos
13.2:r6
juniperjunos
13.2x51:x51
juniperjunos
13.2x51:x51
juniperjunos
13.2x51:x51
juniperjunos
13.2x51:x51
juniperjunos
13.2x51:x51
juniperjunos
13.3
juniperjunos
13.3:r1
juniperjunos
13.3:r2
juniperjunos
13.3:r3
juniperjunos
13.3:r4
juniperjunos
13.3:r5
juniperjunos
14.1
juniperjunos
14.1:r1
juniperjunos
14.1:r2
juniperjunos
14.1:r3
juniperjunos
14.1:r4
juniperjunos
14.1x50:x50
juniperjunos
14.1x51:x51
juniperjunos
14.1x53:x53
juniperjunos
14.1x55:x55
juniperjunos
14.2
juniperjunos
15.1
juniperjunos
15.1:r1
juniperjunos
15.1x49:x49
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10707
http://www.securitytracker.com/id/1033817
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10707
http://www.securitytracker.com/id/1033817