CVE-2017-10602
Published Jul 17, 2017
Last updated 6 years ago
Overview
- Description
- A buffer overflow vulnerability in Junos OS CLI may allow a local authenticated user with read only privileges and access to Junos CLI, to execute code with root privileges. Affected releases are Juniper Networks Junos OS: 14.1X53 versions prior to 14.1X53-D46 on EX2200/VC, EX3200, EX3300/VC, EX4200, EX4300, EX4550/VC, EX4600, EX6200, EX8200/VC (XRE), QFX3500, QFX3600, QFX5100; 14.1X53 versions prior to 14.1X53-D130 on QFabric System; 14.2 versions prior to 14.2R4-S9, 14.2R6; 15.1 versions prior to 15.1F5, 15.1R3; 15.1X49 versions prior to 15.1X49-D40 on SRX Series; 15.1X53 versions prior to 15.1X53-D47 on NFX150, NFX250; 15.1X53 versions prior to 15.1X53-D65 on QFX10000 Series; 15.1X53 versions prior to 15.1X53-D233 on QFX5110, QFX5200.
- Source
- sirt@juniper.net
- NVD status
- Modified
Risk scores
CVSS 3.0
- Type
- Primary
- Base score
- 7.8
- Impact score
- 5.9
- Exploitability score
- 1.8
- Vector string
- CVSS:3.0/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
CVSS 2.0
- Type
- Primary
- Base score
- 7.2
- Impact score
- 10
- Exploitability score
- 3.9
- Vector string
- AV:L/AC:L/Au:N/C:C/I:C/A:C
Weaknesses
- nvd@nist.gov
- CWE-119
Social media
- Hype score
- Not currently trending
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:juniper:junos:14.1x53:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "9C7FCCC1-B151-465A-8327-26DB5DC074F0"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:juniper:junos:14.2:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D59449C6-5BD5-4C07-AEF6-EEBC70D9C4C7"
},
{
"criteria": "cpe:2.3:o:juniper:junos:14.2:r1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "79149AA0-17D1-4522-894F-C025F7A30FD7"
},
{
"criteria": "cpe:2.3:o:juniper:junos:14.2:r2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "30726286-7CB1-4E5D-AE44-2B4D84795900"
},
{
"criteria": "cpe:2.3:o:juniper:junos:14.2:r3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "33BE028F-2961-414A-9D42-C4861566C2DC"
},
{
"criteria": "cpe:2.3:o:juniper:junos:14.2:r4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E85AB30C-03FC-44DB-A8AA-B916A905CA66"
},
{
"criteria": "cpe:2.3:o:juniper:junos:14.2:r5:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "D01CA25F-E1E1-4831-8561-D3B0300BF4A7"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:juniper:junos:15.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "BD0952C4-FFCC-4A78-ADFC-289BD6E269DB"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1:a1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "83AB8877-3DC0-4B8C-B864-1BF18C368337"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1:f1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C56F5C48-BA48-4EE1-88BE-782B3CFB3B90"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1:f2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1C56E6C3-BBB6-4853-91D9-99C7676D0CD4"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1:f2-s1:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "AC196685-3B0C-4754-AE6A-6BE456CC6B52"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1:f2-s2:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F0146AA9-C513-4871-A62A-52C9F40EB958"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1:f2-s3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A18672EF-E33D-4ACE-BB0A-561812F502C7"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1:f2-s4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CEF0E75F-831E-40B8-926D-B2E92A84E31B"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1:f3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0E0ECBD8-3D66-49DA-A557-5695159F0C06"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1:f4:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "0EAA2998-A0D6-4818-9E7C-25E8099403E7"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1:f6:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "71D211B9-B2FE-4324-AAEE-8825D5238E48"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1:r3:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C7620D01-1A6B-490F-857E-0D803E0AEE56"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "20DABA6A-FA7A-4289-8C6A-2B93689A5440"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49-d10:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8278F453-2364-43DE-A1A7-7538291970FD"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49-d20:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "3C3F89F2-5CAC-4016-AC55-2B43909F3E4D"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49-d30:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "29805EC7-F643-40B7-B34F-3926151B0DFC"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x49-d35:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "04595957-476D-4021-9CFA-CA51BA294E56"
}
],
"operator": "OR"
}
]
},
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d10:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "6E87C765-8D68-404A-AC71-3F22A7260E8C"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d20:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1E3B807C-196D-42B8-9042-7582A1366772"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d21:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "83FEEE8F-9279-46F2-BAF9-A60537020C61"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d25:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1DD0B95A-7C9F-4A18-9CD8-BA344DEFC9D4"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d30:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1F294E43-73FA-4EF3-90F2-EE29C56D6573"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d32:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "EDDE1048-BFEA-4A3E-8270-27C538A68837"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d33:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "CC517CD0-FF35-498F-AD33-683B43CA3829"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d34:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "53F7E1C5-BFA9-426C-9F95-3EA5DB458C7E"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d40:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C2B5ED13-F998-447C-8FEA-047FE9FE2F4B"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d45:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "65F3CD2A-D5E1-4EFF-9013-6D81B396F765"
},
{
"criteria": "cpe:2.3:o:juniper:junos:15.1x53:d70:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "88BAA95F-7CA2-46A0-8F60-588941AF3E44"
}
],
"operator": "OR"
}
]
}
]