Lucene search

JuniperCVE-2019-0015

HistoryJan 15, 2019 - 9:29 p.m.

CVE-2019-0015

2019-01-1521:29:01

CWE-613

juniper

web.nvd.nist.gov

vulnerability

srx series

service gateway

dynamic vpn

connection

token caching

authentication

junos os

nvd

CVSS2

5.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

21.9%

JSON

A vulnerability in the SRX Series Service Gateway allows deleted dynamic VPN users to establish dynamic VPN connections until the device is rebooted. A deleted dynamic VPN connection should be immediately disallowed from establishing new VPN connections. Due to an error in token caching, deleted users are allowed to connect once a previously successful dynamic VPN connection has been established. A reboot is required to clear the cached authentication token. Affected releases are Junos OS on SRX Series: 12.3X48 versions prior to 12.3X48-D75; 15.1X49 versions prior to 15.1X49-D150; 17.3 versions prior to 17.3R3; 17.4 versions prior to 17.4R2; 18.1 versions prior to 18.1R3; 18.2 versions prior to 18.2R2.

Affected configurations

Nvd

Node

juniperjunosMatch12.3x48-

juniperjunosMatch12.3x48d10

juniperjunosMatch12.3x48d100

juniperjunosMatch12.3x48d15

juniperjunosMatch12.3x48d20

juniperjunosMatch12.3x48d25

juniperjunosMatch12.3x48d30

juniperjunosMatch12.3x48d35

juniperjunosMatch12.3x48d40

juniperjunosMatch12.3x48d45

juniperjunosMatch12.3x48d50

juniperjunosMatch12.3x48d51

juniperjunosMatch12.3x48d55

juniperjunosMatch12.3x48d60

juniperjunosMatch12.3x48d65

juniperjunosMatch12.3x48d66

juniperjunosMatch12.3x48d70

juniperjunosMatch15.1x49-

juniperjunosMatch15.1x49d10

juniperjunosMatch15.1x49d100

juniperjunosMatch15.1x49d110

juniperjunosMatch15.1x49d120

juniperjunosMatch15.1x49d130

juniperjunosMatch15.1x49d131

juniperjunosMatch15.1x49d140

juniperjunosMatch15.1x49d15

juniperjunosMatch15.1x49d20

juniperjunosMatch15.1x49d25

juniperjunosMatch15.1x49d30

juniperjunosMatch15.1x49d35

juniperjunosMatch15.1x49d40

juniperjunosMatch15.1x49d45

juniperjunosMatch15.1x49d50

juniperjunosMatch15.1x49d55

juniperjunosMatch15.1x49d60

juniperjunosMatch15.1x49d65

juniperjunosMatch15.1x49d70

juniperjunosMatch15.1x49d75

juniperjunosMatch15.1x49d80

juniperjunosMatch15.1x49d90

juniperjunosMatch17.3-

juniperjunosMatch17.3r1

juniperjunosMatch17.3r1-s1

juniperjunosMatch17.3r1-s4

juniperjunosMatch17.3r2

juniperjunosMatch17.3r2-s1

juniperjunosMatch17.3r2-s2

juniperjunosMatch17.3r2-s3

juniperjunosMatch17.3r2-s4

juniperjunosMatch17.3r2-s5

juniperjunosMatch17.4-

juniperjunosMatch17.4r1

juniperjunosMatch17.4r1-s1

juniperjunosMatch17.4r1-s2

juniperjunosMatch17.4r1-s3

juniperjunosMatch17.4r1-s4

juniperjunosMatch17.4r1-s5

juniperjunosMatch17.4r1-s6

juniperjunosMatch17.4r1-s7

juniperjunosMatch18.1-

juniperjunosMatch18.1r

juniperjunosMatch18.1r1

juniperjunosMatch18.1r2

juniperjunosMatch18.1r2-s1

juniperjunosMatch18.1r2-s2

juniperjunosMatch18.1r2-s4

juniperjunosMatch18.2-

juniperjunosMatch18.2r

juniperjunosMatch18.2r1

juniperjunosMatch18.2r1-

juniperjunosMatch18.2r1-s2

juniperjunosMatch18.2r1-s3

juniperjunosMatch18.2r1-s4

juniperjunosMatch18.2r1-s5

AND

junipersrx100Match-

junipersrx110Match-

junipersrx1400Match-

junipersrx1500Match-

junipersrx210Match-

junipersrx220Match-

junipersrx240Match-

junipersrx300Match-

junipersrx320Match-

junipersrx340Match-

junipersrx3400Match-

junipersrx345Match-

junipersrx3600Match-

junipersrx380Match-

junipersrx4000Match-

junipersrx4100Match-

junipersrx5400Match-

junipersrx550Match-

junipersrx5600Match-

junipersrx5800Match-

junipersrx650Match-

VendorProductVersionCPE
juniperjunos12.3x48cpe:2.3:o:juniper:junos:12.3x48:-:*:*:*:*:*:*
juniperjunos12.3x48cpe:2.3:o:juniper:junos:12.3x48:d10:*:*:*:*:*:*
juniperjunos12.3x48cpe:2.3:o:juniper:junos:12.3x48:d100:*:*:*:*:*:*
juniperjunos12.3x48cpe:2.3:o:juniper:junos:12.3x48:d15:*:*:*:*:*:*
juniperjunos12.3x48cpe:2.3:o:juniper:junos:12.3x48:d20:*:*:*:*:*:*
juniperjunos12.3x48cpe:2.3:o:juniper:junos:12.3x48:d25:*:*:*:*:*:*
juniperjunos12.3x48cpe:2.3:o:juniper:junos:12.3x48:d30:*:*:*:*:*:*
juniperjunos12.3x48cpe:2.3:o:juniper:junos:12.3x48:d35:*:*:*:*:*:*
juniperjunos12.3x48cpe:2.3:o:juniper:junos:12.3x48:d40:*:*:*:*:*:*
juniperjunos12.3x48cpe:2.3:o:juniper:junos:12.3x48:d45:*:*:*:*:*:*

Vendor	Product	Version	CPE
juniper	junos	12.3x48	cpe:2.3:o:juniper:junos:12.3x48:-::::::
juniper	junos	12.3x48	cpe:2.3:o:juniper:junos:12.3x48:d10::::::
juniper	junos	12.3x48	cpe:2.3:o:juniper:junos:12.3x48:d100::::::
juniper	junos	12.3x48	cpe:2.3:o:juniper:junos:12.3x48:d15::::::
juniper	junos	12.3x48	cpe:2.3:o:juniper:junos:12.3x48:d20::::::
juniper	junos	12.3x48	cpe:2.3:o:juniper:junos:12.3x48:d25::::::
juniper	junos	12.3x48	cpe:2.3:o:juniper:junos:12.3x48:d30::::::
juniper	junos	12.3x48	cpe:2.3:o:juniper:junos:12.3x48:d35::::::
juniper	junos	12.3x48	cpe:2.3:o:juniper:junos:12.3x48:d40::::::
juniper	junos	12.3x48	cpe:2.3:o:juniper:junos:12.3x48:d45::::::

Rows per page:

1-10 of 951

CNA Affected

[
  {
    "platforms": [
      "SRX Series"
    ],
    "product": "Junos OS",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "lessThan": "12.3X48-D75",
        "status": "affected",
        "version": "12.3X48",
        "versionType": "custom"
      },
      {
        "lessThan": "15.1X49-D150",
        "status": "affected",
        "version": "15.1X49",
        "versionType": "custom"
      },
      {
        "lessThan": "17.3R3",
        "status": "affected",
        "version": "17.3",
        "versionType": "custom"
      },
      {
        "lessThan": "17.4R2",
        "status": "affected",
        "version": "17.4",
        "versionType": "custom"
      },
      {
        "lessThan": "18.1R3",
        "status": "affected",
        "version": "18.1",
        "versionType": "custom"
      },
      {
        "lessThan": "18.2R2",
        "status": "affected",
        "version": "18.2",
        "versionType": "custom"
      }
    ]
  }
]

References

www.securityfocus.com/bid/106668

kb.juniper.net/JSA10915

CVSS2

5.5

Attack Vector

NETWORK

Attack Complexity

LOW

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:L/Au:S/C:P/I:P/A:N

CVSS3

5.4

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

LOW

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:N

AI Score

5.5

Confidence

High

EPSS

0.001

Percentile

21.9%

JSON

Related for CVE-2019-0015