CVE-2017-2321

2017-04-2415:00:00

juniper

www.cve.org

AI Score

8.3

Confidence

High

EPSS

0.001

Percentile

36.9%

JSON

A vulnerability in Juniper Networks NorthStar Controller Application prior to version 2.1.0 Service Pack 1 may allow an unauthenticated, unprivileged, network-based attacker to cause various system services partial to full denials of services, modification of system states and files, and potential disclosure of sensitive information which may assist the attacker in further attacks on the system through the use of multiple attack vectors, including man-in-the-middle attacks, file injections, and malicious execution of commands causing out of bound memory conditions leading to other attacks.

CNA Affected

[
  {
    "product": "NorthStar Controller Application",
    "vendor": "Juniper Networks",
    "versions": [
      {
        "status": "affected",
        "version": "prior to version 2.1.0 Service Pack 1"
      }
    ]
  }
]

References

www.securityfocus.com/bid/97693

kb.juniper.net/JSA10783