CVE-2016-1271

Juniper Junos OS before 12.1X46-D45, 12.1X47 before 12.1X47-D30, 12.3 before 12.3R11, 12.3X48 before 12.3X48-D25, 13.2 before 13.2R8, 13.3 before 13.3R7, 14.1 before 14.1R6, 14.2 before 14.2R4, 15.1 before 15.1R1 or 15.1F2, and 15.1X49 before 15.1X49-D15 allow local users to gain privileges via crafted combinations of CLI commands and arguments, a different vulnerability than CVE-2015-3003, CVE-2014-3816, and CVE-2014-0615.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 HIGH
LOCAL
LOW
LOW
CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 11%
VendorProductVersion
juniperjunos
𝑥
≤ 12.1x46
juniperjunos
12.1x47:x47
juniperjunos
12.1x47:x47
juniperjunos
12.1x47:x47
juniperjunos
12.1x47:x47
juniperjunos
12.1x47:x47
juniperjunos
12.3
juniperjunos
12.3:r1
juniperjunos
12.3:r10
juniperjunos
12.3:r2
juniperjunos
12.3:r3
juniperjunos
12.3:r4
juniperjunos
12.3:r5
juniperjunos
12.3:r6
juniperjunos
12.3:r7
juniperjunos
12.3:r8
juniperjunos
12.3:r9
juniperjunos
12.3x48:x48
juniperjunos
12.3x48:x48
juniperjunos
12.3x48:x48
juniperjunos
13.2
juniperjunos
13.2:r1
juniperjunos
13.2:r2
juniperjunos
13.2:r3
juniperjunos
13.2:r4
juniperjunos
13.2:r5
juniperjunos
13.2:r6
juniperjunos
13.2:r7
juniperjunos
13.3
juniperjunos
13.3:r1
juniperjunos
13.3:r2
juniperjunos
13.3:r3
juniperjunos
13.3:r4
juniperjunos
13.3:r5
juniperjunos
13.3:r6
juniperjunos
14.1
juniperjunos
14.1:r1
juniperjunos
14.1:r2
juniperjunos
14.1:r4
juniperjunos
14.1:r5
juniperjunos
14.2:r1
juniperjunos
14.2:r2
juniperjunos
14.2:r3
juniperjunos
15.1
juniperjunos
15.1x49:x49
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10739
http://www.securitytracker.com/id/1035667
http://kb.juniper.net/InfoCenter/index?page=content&id=JSA10739
http://www.securitytracker.com/id/1035667