CVE-2017-2331

EUVD-2017-11514
A firewall bypass vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow a network-based malicious attacker to bypass firewall policies, leading to authentication bypass methods, information disclosure, modification of system files, and denials of service.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.3 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L
Base Score
CVSS 3.x
EPSS Score
Percentile: 71%
Affected Products (NVD)
VendorProductVersion
junipernorthstar_controller
𝑥
≤ 2.1.0
𝑥
= Vulnerable software versions
References
http://www.securityfocus.com/bid/97619
https://kb.juniper.net/JSA10783
http://www.securityfocus.com/bid/97619
https://kb.juniper.net/JSA10783