CVE-2021-0231
22.04.2021, 20:15
A path traversal vulnerability in the Juniper Networks SRX and vSRX Series may allow an authenticated J-web user to read sensitive system files. This issue affects Juniper Networks Junos OS on SRX and vSRX Series: 19.3 versions prior to 19.3R2-S6, 19.3R3-S1; 19.4 versions prior to 19.4R2-S4, 19.4R3; 20.1 versions prior to 20.1R1-S4, 20.1R2; 20.2 versions prior to 20.2R1-S3, 20.2R2; This issue does not affect Juniper Networks Junos OS versions prior to 19.3R1.
| Vendor | Product | Version |
|---|---|---|
| juniper | junos | 19.3 |
| juniper | junos | 19.3:r1 |
| juniper | junos | 19.3:r1-s1 |
| juniper | junos | 19.3:r2 |
| juniper | junos | 19.3:r2-s1 |
| juniper | junos | 19.3:r2-s2 |
| juniper | junos | 19.3:r2-s3 |
| juniper | junos | 19.3:r2-s4 |
| juniper | junos | 19.3:r2-s5 |
| juniper | junos | 19.3:r3 |
| juniper | junos | 19.4:r1 |
| juniper | junos | 19.4:r1-s1 |
| juniper | junos | 19.4:r1-s2 |
| juniper | junos | 19.4:r2 |
| juniper | junos | 19.4:r2-s1 |
| juniper | junos | 19.4:r2-s2 |
| juniper | junos | 19.4:r2-s3 |
| juniper | junos | 20.1:r1 |
| juniper | junos | 20.1:r1-s1 |
| juniper | junos | 20.1:r1-s2 |
| juniper | junos | 20.1:r1-s3 |
| juniper | junos | 20.2:r1 |
| juniper | junos | 20.2:r1-s1 |
| juniper | junos | 20.2:r1-s2 |
𝑥
= Vulnerable software versions