CVE-2019-0058

Published Oct 9, 2019

Last updated 4 years ago

CVSS high 7.8

Overview

Description: A vulnerability in the Veriexec subsystem of Juniper Networks Junos OS allowing an attacker to fully compromise the host system. A local authenticated user can elevate privileges to gain full control of the system even if they are specifically denied access to perform certain actions. This issue affects: Juniper Networks Junos OS: 12.3X48 versions prior to 12.3X48-D80 on SRX Series.
Source: sirt@juniper.net
NVD status: Analyzed

Risk scores

CVSS 3.1

Type: Primary
Base score: 7.8
Impact score: 5.9
Exploitability score: 1.8
Vector string: CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Severity: HIGH

CVSS 2.0

Type: Primary
Base score: 7.2
Impact score: 10
Exploitability score: 3.9
Vector string: AV:L/AC:L/Au:N/C:C/I:C/A:C

Weaknesses

nvd@nist.gov: NVD-CWE-noinfo

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:-:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "AC1FED64-8725-4978-9EBF-E3CD8EF338E4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d10:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "4B7066A4-CD05-4E1A-89E8-71B4CB92CFF3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d15:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A4AC2E1E-74FB-4DA3-8292-B2079F83FF54"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d20:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "5FF83BD0-3B28-481E-8C8F-09ECDA493DA4"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d25:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6E296274-AFC1-4F56-A4B3-827C2E0BC9D5"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d30:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "3C82799B-BD25-4359-9E3D-4D7CA7367525"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d35:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "094485FF-960C-4533-A2AF-6C4D420D260D"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d40:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F8BE3661-1DE5-4F57-9384-68C1B34F6812"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d45:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B45E8A14-E7F4-41EB-9BFA-7A19E35D11FE"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d50:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C6C694C6-C58C-4513-91E8-6CC22A2386E3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d55:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "6B65EF51-ED97-4973-94C4-8F66C553F190"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d60:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "9EE7C08A-2A4B-4A84-AD95-A890913E2EE3"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d65:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "44C61900-680C-4C74-8B96-ACC93FE9465E"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d70:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "B6C38637-ABE0-419A-A053-CBE076766551"
          },
          {
            "criteria": "cpe:2.3:o:juniper:junos:12.3x48:d75:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "1F87EF0D-E609-4D4A-B228-CEF05C753E68"
          }
        ],
        "operator": "OR"
      },
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:h:juniper:csrx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "11D4A86D-BDB4-4A01-96FE-7E023C58074B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "561C1113-3D59-4DD9-ADA7-3C9ECC4632EC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx110:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "78C6D8A0-92D3-4FD3-BCC1-CC7C87B76317"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx1400:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "927EAB8B-EC3B-4B12-85B9-5517EBA49A30"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx1500:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2CEBF85C-736A-4E7D-956A-3E8210D4F70B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx210:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CD647C15-A686-4C8F-A766-BC29404C0FED"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx220:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "45AB1622-1AED-4CD7-98F1-67779CDFC321"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx240:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "89276D88-3B8D-4168-A2CD-0920297485F2"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx300:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "BB5AB24B-2B43-43DD-AE10-F758B4B19F2A"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx320:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "80F9DC32-5ADF-4430-B1A6-357D0B29DB78"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx340:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8B82D4C4-7A65-409A-926F-33C054DCBFBA"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx3400:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "746C3882-2A5B-4215-B259-EB1FD60C513D"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx345:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CE535749-F4CE-4FFA-B23D-BF09C92481E5"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx3600:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "DDE64EC0-7E42-43AF-A8FA-1A233BD3E3BC"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4100:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "3AA8999C-8AE4-416F-BA2A-B1A21F33B4D7"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4200:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "CCC5F6F5-4347-49D3-909A-27A3A96D36C9"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx4600:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "56BA6B86-D3F4-4496-AE46-AC513C6560FA"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx5400:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "2FDDC897-747F-44DD-9599-7266F9B5B7B1"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx550:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "62FC145A-D477-4C86-89E7-F70F52773801"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx550_hm:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "06685D0E-A075-49A5-9EF4-34F0F795C8C6"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx5600:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "68CA098D-CBE4-4E62-9EC0-43E1B6098710"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx5800:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "66F474D4-79B6-4525-983C-9A9011BD958B"
          },
          {
            "criteria": "cpe:2.3:h:juniper:srx650:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8AA424D4-4DBF-4E8C-96B8-E37741B5403E"
          },
          {
            "criteria": "cpe:2.3:h:juniper:vsrx:-:*:*:*:*:*:*:*",
            "vulnerable": false,
            "matchCriteriaId": "8B10DFCE-5331-4D79-8D9F-EF84743493D3"
          }
        ],
        "operator": "OR"
      }
    ],
    "operator": "AND"
  }
]

Overview

Risk scores

CVSS 3.1

CVSS 2.0

Weaknesses

Social media

Configurations

References