CVE-2020-1675

Summary

When Security Assertion Markup Language (SAML) authentication is enabled, Juniper Networks Mist Cloud UI might incorrectly process invalid authentication certificates which could allow a malicious network-based user to access unauthorized data. This issue affects all Juniper Networks Mist Cloud UI versions prior to September 2 2020.

Affected Software

VendorProductVersion RangeStatus
Juniper NetworksMIST Cloud UIunspecified < 09/02/2020affected

Weaknesses

  • CWE-299: CWE-299 Improper Check for Certificate Revocation

Workarounds

No workarounds are required since the issue has been resolved in the Mist cloud UI.

ADP Enrichment

CVE Program Container

Additional References

References