CVE-2016-1264

15.04.2016, 14:59

Race condition in the Op command in Juniper Junos OS before 12.1X44-D55, 12.1X46 before 12.1X46-D40, 12.1X47 before 12.1X47-D25, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D20, 12.3X50 before 12.3X50-D50, 13.2 before 13.2R8, 13.2X51 before 13.2X51-D39, 13.2X52 before 13.2X52-D30, 13.3 before 13.3R7, 14.1 before 14.1R6, 14.1X53 before 14.1X53-D30, 14.2 before 14.2R4, 15.1 before 15.1F2 or 15.1R2, 15.1X49 before 15.1X49-D10 or 15.1X49-D20, and 16.1 before 16.1R1 allows remote authenticated users to gain privileges via the URL option.

Provider	Type	Base Score	Atk. Vector	Atk. Complexity	Priv. Required	Vector
NIST	NIST	8.8 HIGH	NETWORK	LOW	LOW	CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
mitre	CNA	---				---
CVE	ADP	---				---

Base Score

CVSS 3.x

EPSS Score

Percentile: 73%

Vendor	Product	Version
juniper	junos	𝑥 ≤ 12.1x44
juniper	junos	12.1x46:x46
juniper	junos	12.1x46:x46
juniper	junos	12.1x46:x46
juniper	junos	12.1x46:x46
juniper	junos	12.1x46:x46
juniper	junos	12.1x46:x46
juniper	junos	12.1x46:x46
juniper	junos	12.1x47:x47
juniper	junos	12.1x47:x47
juniper	junos	12.1x47:x47
juniper	junos	12.1x47:x47
juniper	junos	12.3
juniper	junos	12.3:r1
juniper	junos	12.3:r10
juniper	junos	12.3:r2
juniper	junos	12.3:r3
juniper	junos	12.3:r4
juniper	junos	12.3:r5
juniper	junos	12.3:r6
juniper	junos	12.3:r7
juniper	junos	12.3:r8
juniper	junos	12.3:r9
juniper	junos	12.3x48:x48
juniper	junos	12.3x48:x48
juniper	junos	12.3x50:x50
juniper	junos	12.3x50:x50
juniper	junos	12.3x50:x50
juniper	junos	12.3x50:x50
juniper	junos	12.3x50:x50
juniper	junos	12.3x50:x50
juniper	junos	13.2
juniper	junos	13.2:r1
juniper	junos	13.2:r2
juniper	junos	13.2:r3
juniper	junos	13.2:r4
juniper	junos	13.2:r5
juniper	junos	13.2:r6
juniper	junos	13.2:r7
juniper	junos	13.2:r7-s1
juniper	junos	13.2:r7-s2
juniper	junos	13.2x51:x51
juniper	junos	13.2x51:x51
juniper	junos	13.2x51:x51
juniper	junos	13.2x51:x51
juniper	junos	13.2x51:x51
juniper	junos	13.2x51:x51
juniper	junos	13.2x51:x51
juniper	junos	13.2x52:x52
juniper	junos	13.2x52:x52
juniper	junos	13.2x52:x52
juniper	junos	13.2x52:x52
juniper	junos	13.2x52:x52
juniper	junos	13.3
juniper	junos	13.3:r1
juniper	junos	13.3:r2
juniper	junos	13.3:r2-s2
juniper	junos	13.3:r3
juniper	junos	13.3:r4
juniper	junos	13.3:r5
juniper	junos	13.3:r6
juniper	junos	14.1
juniper	junos	14.1:r1
juniper	junos	14.1:r2
juniper	junos	14.1:r3
juniper	junos	14.1:r4
juniper	junos	14.1:r5
juniper	junos	14.1x53:x53
juniper	junos	14.1x53:x53
juniper	junos	14.1x53:x53
juniper	junos	14.1x53:x53
juniper	junos	14.1x53:x53
juniper	junos	14.1x53:x53
juniper	junos	14.2:r1
juniper	junos	14.2:r2
juniper	junos	14.2:r3
juniper	junos	15.1
juniper	junos	15.1x49:x49
juniper	junos	16.1

𝑥

= Vulnerable software versions

Common Weakness Enumeration

CWE-264 -

References

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10725

http://www.securitytracker.com/id/1035669

http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10725

http://www.securitytracker.com/id/1035669