CVE-2020-1611
6.5
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N
Summary
A Local File Inclusion vulnerability in Juniper Networks Junos Space allows an attacker to view all files on the target when the device receives malicious HTTP packets. This issue affects: Juniper Networks Junos Space versions prior to 19.4R1.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| Juniper Networks | Junos Space | unspecified < 19.4R1 | affected |
Weaknesses
- Local file inclusion
Workarounds
There are no known workarounds for this issue.
To reduce the risk of exploitation of these issues, use access lists or firewall filters to limit access to Junos Space to only trusted administrative networks, hosts and users.
ADP Enrichment
CVE Program Container
Additional References
- https://kb.juniper.net/JSA10993
- https://prsearch.juniper.net/InfoCenter/index?page=prcontent&id=PR1449224
References
- https://kb.juniper.net/JSA10993
- https://prsearch.juniper.net/InfoCenter/index?page=prcontent&id=PR1449224
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.