Lucene search
HistoryNov 05, 2013 - 8:55 p.m.
CVE-2013-6618
cve-2013-6618
remote code execution
juniper junos
security vulnerability
nvd
j-web
ajax
jsdm
port.php
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
7.4 High
AI Score
Confidence
Low
0.031 Low
EPSS
Percentile
91.1%
jsdm/ajax/port.php in J-Web in Juniper Junos before 10.4R13, 11.4 before 11.4R7, 12.1 before 12.1R5, 12.2 before 12.2R3, and 12.3 before 12.3R1 allows remote authenticated users to execute arbitrary commands via the rsargs parameter in an exec action.
Affected configurations
Node
juniperjunosRange≤10.4
ORjuniperjunosMatch10.0
ORjuniperjunosMatch10.1
ORjuniperjunosMatch10.2
ORjuniperjunosMatch10.3
ORjuniperjunosMatch11.4
ORjuniperjunosMatch12.1
ORjuniperjunosMatch12.2
ORjuniperjunosMatch12.3
Related
prion
prion
Design/Logic Flaw
2013-11-05 20:55:00
cvelist
cvelist
CVE-2013-6618
2013-11-05 20:00:00
nvd
nvd
CVE-2013-6618
2013-11-05 20:55:30
openvas
openvas
Juniper Networks Junos OS J-Web Sajax Remote Code Execution Vulnerability
2014-06-16 00:00:00
nessus
nessus
Juniper Junos J-Web Sajax Remote Code Execution (JSA10560)
2013-12-10 00:00:00
9 High
CVSS2
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
SINGLE
Confidentiality Impact
COMPLETE
Integrity Impact
COMPLETE
Availability Impact
COMPLETE
AV:N/AC:L/Au:S/C:C/I:C/A:C
7.4 High
AI Score
Confidence
Low
0.031 Low
EPSS
Percentile
91.1%
Related for CVE-2013-6618