CVE-2018-0010

A vulnerability in the Juniper Networks Junos Space Security Director allows a user who does not have SSH access to a device to reuse the URL that was created for another user to perform SSH access. Affected releases are all versions of Junos Space Security Director prior to 17.2R1.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
6.5 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
juniperCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 35%
VendorProductVersion
juniperjunos_space
13.3:r1
juniperjunos_space
13.3:r2
juniperjunos_space
14.1:r1
juniperjunos_space
14.1:r2
juniperjunos_space
14.1:r3
juniperjunos_space
15.1:r1
juniperjunos_space
15.1:r2
juniperjunos_space
15.1:r3
juniperjunos_space
15.1:r4
juniperjunos_space
15.2:r1
juniperjunos_space
15.2:r2
juniperjunos_space
16.1:r1
juniperjunos_space
16.1:r2
juniperjunos_space
16.1:r3
juniperjunos_space
17.1:r1
juniperjunos_space
17.2:r1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://kb.juniper.net/JSA10840
https://kb.juniper.net/JSA10840