CVE-2018-0010

EUVD-2018-0835
A vulnerability in the Juniper Networks Junos Space Security Director allows a user who does not have SSH access to a device to reuse the URL that was created for another user to perform SSH access. Affected releases are all versions of Junos Space Security Director prior to 17.2R1.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
6.5 MEDIUM
NETWORK
LOW
LOW
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:H/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 34%
Affected Products (NVD)
VendorProductVersion
juniperjunos_space
13.3:r1
juniperjunos_space
13.3:r2
juniperjunos_space
14.1:r1
juniperjunos_space
14.1:r2
juniperjunos_space
14.1:r3
juniperjunos_space
15.1:r1
juniperjunos_space
15.1:r2
juniperjunos_space
15.1:r3
juniperjunos_space
15.1:r4
juniperjunos_space
15.2:r1
juniperjunos_space
15.2:r2
juniperjunos_space
16.1:r1
juniperjunos_space
16.1:r2
juniperjunos_space
16.1:r3
juniperjunos_space
17.1:r1
juniperjunos_space
17.2:r1
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
https://kb.juniper.net/JSA10840
https://kb.juniper.net/JSA10840