CVE-2019-0072

Summary

An Unprotected Storage of Credentials vulnerability in the identity and access management certificate generation procedure allows a local attacker to gain access to confidential information. This issue affects: Juniper Networks SBR Carrier: 8.4.1 versions prior to 8.4.1R13; 8.5.0 versions prior to 8.5.0R4.

Affected Software

VendorProductVersion RangeStatus
Juniper NetworksSBR Carrier8.4.1 < 8.4.1R13affected
Juniper NetworksSBR Carrier8.5.0 < 8.5.0R4affected

Weaknesses

  • CWE-256: CWE-256 Unprotected Storage of Credentials

Workarounds

There are no viable workarounds for this issue.

ADP Enrichment

CVE Program Container

Additional References

References