CVE-2020-1677— Juniper Networks Mist Cloud UI: SAML authentication attribute elements handling vulnerability.
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2020-1677
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Juniper Networks Mist Cloud UI: SAML authentication attribute elements handling vulnerability.
Source: NVD (National Vulnerability Database)
Vulnerability Description
When SAML authentication is enabled, Juniper Networks Mist Cloud UI might incorrectly handle child elements in SAML responses, allowing a remote attacker to modify a valid SAML response without invalidating its cryptographic signature to bypass SAML authentication security controls. This issue affects all Juniper Networks Mist Cloud UI versions prior to September 2 2020.
Source: NVD (National Vulnerability Database)
CVSS Information
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:L/A:N
Source: NVD (National Vulnerability Database)
Vulnerability Type
输入验证不恰当
Source: NVD (National Vulnerability Database)
Vulnerability Title
Juniper Networks Mist Cloud 数据伪造问题漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
Juniper Networks Mist Cloud是美国瞻博网络(Juniper Networks)公司的一个简化云管理并帮助用户防止供应商和复杂性锁定的平台。它为跨公有和私有云,Docker容器和KVM虚拟机管理程序的服务器提供成本和使用情况报告,RBAC,管理,供应,编排,监控和自动化。 Juniper Networks Mist Cloud UI 存在数据伪造问题漏洞,该漏洞源于当SAML身份验证被启用时可能会错误地处理SAML响应中的子元素,攻击者可利用该漏洞修改有效的SAML响应,而不会使其
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| Juniper Networks | MIST Cloud UI | unspecified ~ 09/02/2020 | - |
II. Public POCs for CVE-2020-1677
| # | POC Description | Source Link | Shenlong Link |
|---|
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2020-1677
请登录查看更多情报信息。
Same Patch Batch · Juniper Networks · 2020-10-16 · 30 CVEs total
| CVE-2020-1656 | 8.8 HIGH | Junos OS: When a DHCPv6 Relay-Agent is configured upon receipt of a specific DHCPv6 client |
| CVE-2020-1673 | 8.8 HIGH | Junos OS: Reflected Cross-site Scripting vulnerability in J-Web and web based (HTTP/HTTPS) |
| CVE-2020-1660 | 8.3 HIGH | Junos OS: MX Series: Receipt of specific packets can cause services card to restart when D |
| CVE-2020-1667 | 8.3 HIGH | Junos OS: MX Series: Services card might restart due to a race condition when DNS filterin |
| CVE-2020-1675 | 8.3 HIGH | Juniper Networks Mist Cloud UI: SAML authentication certificate vulnerability. |
| CVE-2020-1664 | 7.8 HIGH | Junos OS: Buffer overflow vulnerability in device control daemon |
| CVE-2020-1657 | 7.5 HIGH | Junos OS: SRX Series: An attacker sending spoofed packets to IPSec peers may cause a Denia |
| CVE-2020-1686 | 7.5 HIGH | Junos OS: Kernel crash (vmcore) upon receipt of a malformed IPv6 packet. |
| CVE-2020-1684 | 7.5 HIGH | Junos OS: SRX Series: High CPU load due to processing for HTTP traffic when Application Id |
| CVE-2020-1683 | 7.5 HIGH | Junos OS: Memory leak leads to kernel crash (vmcore) due to SNMP polling |
| CVE-2020-1679 | 7.5 HIGH | Junos OS: PTX/QFX Series: Kernel Routing Table (KRT) queue stuck after packet sampling a m |
| CVE-2020-1672 | 7.5 HIGH | Junos OS: jdhcpd process crash when processing a specific DHCPDv6 packet in DHCPv6 relay c |
| CVE-2020-1662 | 7.5 HIGH | Junos OS and Junos OS Evolved: RPD crash due to BGP session flapping. |
| CVE-2020-1671 | 7.5 HIGH | Junos OS: Receipt of malformed DHCPv6 packets causes jdhcpd to crash. |
| CVE-2020-1676 | 7.2 HIGH | Juniper Networks Mist Cloud UI: SAML authentication response handling vulnerability. |
| CVE-2020-1666 | 6.6 MEDIUM | Junos OS Evolved: 'console log-out-on-disconnect' fails to terminate session on console ca |
| CVE-2020-1681 | 6.5 MEDIUM | Junos OS Evolved: Receipt of a specifically malformed NDP packet could lead to Denial of S |
| CVE-2020-1689 | 6.5 MEDIUM | Junos OS: EX4300-MP/EX4600/QFX5K Series: High CPU load due to receipt of specific layer 2 |
| CVE-2020-1688 | 6.5 MEDIUM | Junos OS: SRX and NFX Series: Insufficient Web API private key protection |
| CVE-2020-1687 | 6.5 MEDIUM | Junos OS: EX4300-MP/EX4600/QFX5K Series: High CPU load due to receipt of specific layer 2 |
Showing top 20 of 30 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: Juniper Networks
- CVE-2026-33791
Junos OS and Junos OS Evolved: Execution of crafted CLI comm - CVE-2026-33790
Junos OS: SRX Series: In a NAT64 configuration, receipt of a - CVE-2026-33787
Junos OS: SRX1500, SRX4100, SRX4200, SRX4600: When a specifi - CVE-2026-33785
Junos OS: MX Series: Missing Authorization for specific 'req - CVE-2026-33784
JSI Virtual Lightweight Collector: Default password is not r
Same weakness: CWE-20
V. Comments for CVE-2020-1677
No comments yet